Critical

Hackers Claim Stealing 94GB of Pornhub Premium User Watch Histories

Hackread – Cybersecurity News, Data Breaches, AI, and More
Actively Exploited

Overview

A hacking group known as ShinyHunters has reportedly stolen 94GB of data from former Pornhub Premium users, which includes their watch histories. This breach is part of an extortion campaign aimed at these users, raising significant privacy concerns. The attackers utilized a smishing attack, where they sent phishing messages via text to lure victims into revealing personal information. While the specifics of the breach are still being investigated, conflicting reports have emerged about the extent and security of the data involved. This incident underscores the ongoing risks associated with online platforms, particularly regarding user data security and the potential for exploitation by cybercriminals.

Key Takeaways

  • Active Exploitation: This vulnerability is being actively exploited by attackers. Immediate action is recommended.
  • Affected Systems: Pornhub Premium user watch histories
  • Action Required: Users should monitor their accounts for suspicious activity and consider changing passwords.
  • Timeline: Ongoing since October 2023

Original Article Summary

Cybercriminal group ShinyHunters targets former Pornhub Premium users in a massive 94GB data extortion campaign. Learn about the stolen data details, the involvement of a smishing attack, and the conflicting reports on the breach.

Impact

Pornhub Premium user watch histories

Exploitation Status

This vulnerability is confirmed to be actively exploited by attackers in real-world attacks. Organizations should prioritize patching or implementing workarounds immediately.

Timeline

Ongoing since October 2023

Remediation

Users should monitor their accounts for suspicious activity and consider changing passwords. Enabling two-factor authentication can also help enhance security.

Additional Information

This threat intelligence is aggregated from trusted cybersecurity sources. For the most up-to-date information, technical details, and official vendor guidance, please refer to the original article linked below.

Related Topics: This incident relates to Phishing, Data Breach.

Related Coverage

Week in review: High severity WordPress vulnerabilities, fake OAuth IDs bypass sign-in logs

Help Net Security

Last week, two high severity vulnerabilities were discovered in WordPress that require immediate attention from users and site administrators. The 7.0.2 security release addresses one critical issue along with a high severity problem, both of which could potentially expose websites to serious risks. WordPress users are urged to update their installations promptly to protect against possible exploitation. Additionally, there was a mention of an open-source research agent that poses risks when it interacts with live cloud accounts, emphasizing the importance of securing credentials. These vulnerabilities serve as a reminder of the ongoing need for vigilance in website security.

Jul 19, 2026

Attackers Can Take Over WordPress Sites Using Newly Released wp2shell Exploits

Security Affairs

Recent discoveries have revealed serious vulnerabilities in WordPress, specifically two flaws tracked as CVE-2026-63030 and CVE-2026-60137. These vulnerabilities, known as wp2shell, can be exploited by attackers to execute code remotely without needing authentication. This means that anyone with these vulnerabilities can potentially take control of a WordPress site, particularly those running default configurations. The availability of public proof-of-concept exploits raises the urgency for website owners to address these flaws promptly, as they are now at greater risk of being targeted by malicious actors. It’s critical for users to be aware of these vulnerabilities and take immediate action to secure their sites.

Jul 19, 2026

Update now: 7-Zip fixes RCE flaw exploitable with malicious archives

BleepingComputer

7-Zip has released version 26.02 to address a serious remote code execution (RCE) vulnerability. This flaw allows attackers to execute malicious code on users' systems if they open specially crafted compressed files. Users of 7-Zip should update to the latest version to protect themselves from potential exploitation. The vulnerability is particularly concerning as it could be exploited easily by tricking users into opening harmful files. Keeping software up to date is crucial in maintaining security and preventing such attacks.

Jul 18, 2026

OpenSSL Fixes HollowByte Memory Exhaustion Bug

Security Affairs

Okta has reported a new vulnerability in OpenSSL, dubbed HollowByte, which allows remote attackers to exploit a flaw that can lead to memory exhaustion on servers. This specific vulnerability is only 11 bytes long, and when exploited, it can cause a server to allocate up to 131 KB of memory. As a result, this could trigger denial-of-service attacks, rendering the affected servers unable to respond to legitimate requests. Organizations using affected versions of OpenSSL should prioritize patching this vulnerability to protect their systems from potential exploitation. The risk is significant, as attackers can exploit this flaw without needing authentication, making it easier for malicious actors to disrupt services.

Jul 18, 2026

WordPress Core "wp2shell" RCE flaws get public exploits, patch now

BleepingComputer

Recent vulnerabilities known as 'wp2shell' have been discovered in WordPress Core, allowing remote code execution. These flaws are particularly concerning because public exploits have now been released, meaning attackers can actively take advantage of them. Administrators of WordPress sites need to act quickly to patch their systems to protect against potential breaches. The urgent nature of this situation is underscored by the fact that these vulnerabilities can compromise the security of websites, putting sensitive data at risk. Users of WordPress should ensure they are running the latest version to mitigate these risks.

Jul 18, 2026

Two new high severity WordPress vulnerabilities, patch immediately!

Help Net Security

WordPress has released a security update, version 7.0.2, to address two significant vulnerabilities that pose risks to users. The first vulnerability, identified as CVE-2026-60137, is a SQL injection issue that could allow attackers to manipulate databases. The second, also CVE-2026-60137, relates to a REST API batch-route confusion that could lead to remote code execution, potentially giving attackers full control over affected systems. The vulnerabilities affect WordPress version 6.9 and earlier. Users are strongly advised to update their installations immediately to mitigate the risks associated with these security flaws.

Jul 18, 2026