Crunchyroll Investigates Data Breach Affecting 6.8M Users

Crunchyroll Investigates Data Breach Affecting 6.8M Users

First seen 23 Mar 2026, 06:27 UTC CybersecuritynewsGbhackersCybernewsUk.PcmagBleepingcomputer+6 90% similarity 64.5

Article Content

Browse articles
ThreatCluster

Crunchyroll is investigating a data breach after hackers claimed to have stolen personal information of approximately 6.8 million users. The breach reportedly occurred on March 12, 2026, when a threat actor accessed the Okta SSO account of a support agent from Telus, Crunchyroll's outsourcing partner. The attackers allegedly used malware to compromise the agent's computer, allowing them to access various Crunchyroll applications and download 8 million support ticket records. The stolen data includes names, email addresses, IP addresses, and some credit card details. Although Crunchyroll has acknowledged the claims, they indicated that the hackers might be exaggerating the extent of the breach. The threat actor has demanded $5 million in ransom to prevent public leakage of the data. Crunchyroll is currently collaborating with cybersecurity experts to assess the situation. The incident raises concerns about the security of business process outsourcing companies, which have become attractive targets for cybercriminals.

Key Points: • Hackers claim to have stolen data from 6.8 million Crunchyroll users. • The breach was facilitated through a compromised Telus employee's account. • Crunchyroll is investigating the incident while downplaying the hackers' claims.

ThreatCluster AI

Timeline

2026-03-12
Breach occurred through a compromised Telus employee's account.
2026-03-23
Crunchyroll publicly acknowledges the breach investigation.
2026-03-23
Threat actor demands $5 million ransom from Crunchyroll.

Community

Browse all →