Technology & Science
ShinyHunters Extorts Pornhub After 94 GB Analytics Leak of 200 M Premium Records
Pornhub disclosed that hackers used old Mixpanel analytics credentials to copy millions of historic Premium-user activity logs and are now demanding ransom to keep the data private.
Focusing Facts
- The attackers claim a 94 GB archive containing 201 million records with email, location, search terms and timestamps of Pornhub Premium users.
- Pornhub ended its Mixpanel relationship by 2023 and says no passwords, payment data or government IDs were taken—only legacy analytics events.
- Mixpanel’s own breach on 27 Nov 2025 remains unlinked; the firm says the Pornhub dataset was last accessed legitimately in 2023.
Context
Sexual-privacy hacks resonate far beyond titillation; the 2015 Ashley Madison breach, which exposed 32 million users and led to public shaming and at least two reported suicides, showed how intimate metadata can weaponise moral stigma. This new incident sits at the nexus of three long-running currents: (1) the migration of surveillance from state actors to opaque private analytics firms, (2) the rise of double-extortion crews like ShinyHunters who monetise shame more than credit cards, and (3) dependence on third-party SaaS tools that often outlive their contractual use yet retain troves of identifiable data. If unchecked, such leaks will hard-wire distrust into every online relationship involving sexuality—an area historically policed, from the Comstock laws of the 1870s to Section 230 debates today. On a century horizon, the episode underscores a growing asymmetry: data about our most personal behaviour never truly expires, whereas the security controls and commercial agreements meant to protect it do.
Perspectives
Tabloid / celebrity-driven press
The Sun, Daily Star, JOE.co.uk, Extra.ie — Cast the incident as a huge, alarming hack that puts 200 million Pornhub Premium users’ most intimate search histories at risk of public exposure. Sensational headlines and emphasis on embarrassment amplify fear and boost clicks while largely relegating Pornhub’s caveats that only older, limited analytics were taken and no payment data was exposed.
Left-leaning broadsheet media
The Guardian, Le Monde, AOL.com — Portray the breach primarily as an extortion attempt involving older data siphoned through Mixpanel rather than a direct compromise of Pornhub’s own systems, stressing that passwords and payments are safe. The restrained tone tempers panic and critiques cyber-criminals, but can underplay potential privacy fallout for individuals by foregrounding corporate statements and expert assurances.
Tech & cybersecurity-focused outlets
Hindustan Times tech section, Digit, WION — Frame the event as a case study in third-party analytics risk, listing the precise data fields taken, explaining Mixpanel’s role and offering practical advice for users to secure accounts. Technical focus may narrow the story to infrastructure lessons and ‘how-to’ tips, sidelining broader social or ethical implications of porn-related data exposure for millions.