Alleged Onlyfans Data Leak Sparks Security Concerns

Massive Database Allegedly Linked to OnlyFans Users Surfaces

In a chilling twist for OnlyFans creators and subscribers, a threat actor is claiming to sell a database allegedly connected to OnlyFans accounts, containing a staggering 340 million user records. Priced at 0.313 BTC, the listing was first reported by Hackread on May 25, 2026. The seller, known online as “Euphoric_Reply_5727,” claims the data covers both creators and fans on the platform.

The narrative quickly shifted online, with some reports sensationalizing the incident as an outright hack of OnlyFans. A particular Binance Square post declared "OnlyFans HACKED," suggesting the platform's entire database was compromised. However, a closer look reveals a more complex story.

Is This Really a Hack?

According to Hackread's investigation, the truth behind the data's origins is murkier. The seller first implied the data was extracted from internal OnlyFans databases, but later admitted in a Telegram chat that no such breach had occurred. Instead, they claimed the dataset was assembled from past leaks and public information linked to OnlyFans, suggesting a more common cybercrime strategy of data aggregation and repurposing.

“Even if this isn't a new breach, the risk is real for those targeted by fraud, impersonation, or phishing schemes,” said a cybersecurity expert.

The data reportedly includes usernames, email addresses, phone numbers, social links, and more. Notably, a field labeled "card" was said to include partial payment card numbers, although Hackread could not confirm the validity of this financial data.

Recycled Data But Real Risks

While the evidence doesn't definitively point to a fresh breach of OnlyFans, the potential consequences for users remain concerning. The merging of old leaks with public data under the OnlyFans name poses significant risks – from phishing and blackmail to doxxing and impersonation. For creators, it raises the stakes for potential harassment and fraud; for subscribers, even a tenuous link to the platform could be used for extortion.

As of now, there's no confirmed breach directly tied to this massive listing. What’s clear is that a large dataset branded with the OnlyFans name is being sold, and whether it’s a legitimate platform breach or a cobbled-together collection may be irrelevant to those who could be targeted by subsequent scams.

Users are advised to stay vigilant and secure their accounts with strong, unique passwords and multifactor authentication. While the platform itself has not confirmed any new breach, the situation underscores the importance of cybersecurity awareness for all online interactions.