A significant data breach at X, the platform previously known as Twitter, has caused considerable alarm among its user base. Earlier this month, reports surfaced of an extensive leak involving over 200 million user records, as stated by a hacker known as "ThinkingOne". On a hacker forum, this individual alleged the release of a database containing sensitive information tied to user profiles, including names and email addresses.
"ThinkingOne"
"The data exposed contains nearly everything associated with a user’s X profile," said a cybersecurity expert from Safety Detectives, reflecting on the severity of the breach. The dataset consists of 201,186,753 entries and spans a hefty 34 GB, encompassing not just usernames, but also user IDs, follower counts, and profile images.
Career Journey
"The data exposed contains nearly everything associated with a user’s X profile,"
Career Journey
Investigations into the breach reveal that it may have stemmed from a combination of prior incidents, specifically a massive breach that allegedly occurred early in January 2025, and another earlier leak in 2023. "We believe the leaked information is a result of cross-referencing data from a larger breach impacting 2.8 billion unique Twitter IDs and screen names," said ThinkingOne, indicating the interconnected nature of these vulnerabilities.
While X, under the ownership of xAI since March 2025, has yet to confirm the specifics surrounding this breach, the implications are alarming. The company's silence contrasts sharply with earlier reassurance regarding the 2023 incident, which was characterized as involving mostly public data.
Impact and Legacy
Impact and Legacy
To add some depth to the conversation, analysts from Safety Detectives have partially authenticated the data, matching samples with existing X profiles and verifying some email addresses. However, they have neither confirmed all ownership nor established a full scope of user impact. “The risk to users is elevated, especially considering the amalgamation of email addresses from the 2023 breach, which heightens vulnerabilities to phishing and social engineering attacks,” commented a prominent cybersecurity researcher.
A vulnerability initially noted in January 2022 via Twitter’s bug bounty program allowed malicious actors access to user data by exploiting just an email address or phone number. While the flaw was patched, the resurfacing of this compromised data in subsequent leaks underscores persistent security challenges for X. "The re-emergence of this data raises questions about the adequacy of security measures in place," noted one expert.
"The re-emergence of this data raises questions about the adequacy of security measures in place,"
By the Numbers
The sheer volume of records involved suggests that they might include inactive accounts, bots, or historical data. The total of 2.8 billion records vastly outnumbers X’s estimated active user count of 335 to 600 million, leading to questions about the dataset's true makeup.
According to cybersecurity authorities, users on X should be proactive about their security. Recommendations emphasize the installation of reliable antivirus software to combat phishing attacks which may emerge from this extensive exposure. "With emails linked to X accounts now out there, users are prime targets for phishers posing as X or support representatives," warned an analyst.
"With emails linked to X accounts now out there, users are prime targets for phishers posing as X or support representatives,"
Combatting this, users should "be vigilant against emails attempting to solicit account verifications or password resets," the expert advised. Phishing attempts often contain links or attachments that could harm users' systems and compromise personal data. Strong antivirus solutions can help mitigate these risks, providing alerts and keeping users safe from malicious threats.
"be vigilant against emails attempting to solicit account verifications or password resets,"
As the situation continues to develop, the lack of official acknowledgment from X about this specific breach leaves much to be desired. The implications of such an extensive data leak could resonate throughout the cybersecurity landscape, as it emphasizes the urgent need for robust security protocols and user vigilance across all platforms. Users are urged to remain informed and take necessary precautions to secure their information in an increasingly complex digital environment.
