Clubhouse data breach: 1.3 million users have info leaked online

(Image credit: Clubhouse)
Audio player loading…

Chat app Clubhouse (opens in new tab) has become the latest tech giant to suffer a major data breach after information on around 1.3 million users was leaked online.

CyberNews revealed that an SQL database containing 1.3 million Clubhouse user records leaked for free on a popular hacker forum.

The info in the SQL database contains the likes of User IDs, name, photo URL, username, Twitter handle, Instagram handle, number of followers, and the number of people followed by the user.

Clubhouse breach

However Clubhouse has hit back at CyberNews' claims, saying that it was, "misleading and false." 

"Clubhouse has not been breached or hacked," the company said in a tweet (opens in new tab). The data referred to is all public profile information from our app, which anyone can access via the app or our API."

This suggests that the breached data doesn't include sensitive information such as a password or an email address, which could be more damaging.

However the information could still be used to target Clubhouse users with phishing attacks or other kinds of social engineering assaults.

The SQL breach at Clubhouse

The breach was revealed on a popular hacker forum (Image credit: Cybernews)

This is not the only security scare at Clubhouse, with the app having to upgraded its security (opens in new tab) recently over concerns threat actors in China could potentially spy on users.

Clubhouse users have been advised to avoid suspicious messages and connection requests from strangers, and have also been told they should reset account passwords immediately.

The news comes shortly after similar leaks in which a collective total of over one billion profiles were hacked.

Recently, a cache of 500 million LinkedIn profiles (opens in new tab) was published online, and before that it was Facebook that bore the brunt (opens in new tab) after an incident affected 533 million users across 106 different countries, exposing personally identifiable information (PII) such as names, email addresses, phone numbers and more.

Via CyberNews (opens in new tab)

Mike Moore
Deputy Editor, TechRadar Pro

Mike Moore is Deputy Editor at TechRadar Pro. He has worked as a B2B and B2C tech journalist for nearly a decade, including at one of the UK's leading national newspapers and fellow Future title ITProPortal, and when he's not keeping track of all the latest enterprise and workplace trends, can most likely be found watching, following or taking part in some kind of sport.