In a potentially monumental breach of online security, 400GB of data has allegedly surfaced, exposing details of approximately 2.873 billion users of Twitter, now known as X. This incident, described as one of the most significant social media data leaks to date, was initially unveiled by a forum user operating under the pseudonym "ThinkingOne" on March 28, 2025.
"ThinkingOne"
The leak follows a series of layoffs within the company, raising suspicions that it may have stemmed from a disgruntled employee. "I reached out to X on multiple occasions to make them aware of this problem, but my messages went unanswered," said ThinkingOne. In light of this, the individual chose to share the details publicly, asserting that the gravity of the breach warranted urgent attention.
"I reached out to X on multiple occasions to make them aware of this problem, but my messages went unanswered,"
The information leaked consists of a 34GB CSV file, which reduces to about 9GB when compressed. It merges the current leak with data from a prior breach in 2023, which involved access to 200 million user records. ThinkingOne explained, "Here, I have taken the records from the 200M Twitter breach (which X claims is public data) and appended the data from the 2.8 billion breach. Only records with screennames present in both are included, so there are 201,186,753 total entries."
This newfound dataset provides extensive details, such as user email addresses, screen names, follower counts, account creation dates, user IDs, time zones, and language preferences. For instance, one of the user entries listed from the 2023 breach featured basic information, including an account created on May 21, 2009, with the screen name "TrumpOnline" and an associated email of "socialmedia@trumpnetwork.com."
"TrumpOnline"
As of now, X has not publicly addressed the breach in detail. This silence raises questions not only about user safety but also about the company's transparency during periods of upheaval. Security analyst Dr. Emily Howard commented, "The implications of this breach go beyond individual user safety. It suggests a severe vulnerability in X's data handling and oversight during critical times."
In the wake of this incident, users are cautioned to remain vigilant regarding the potential misuse of their leaked credentials. Security experts recommend that individuals update passwords and enable additional security measures, like two-factor authentication. "Every user must now consider their online safety protocols and act accordingly, as larger breaches like this one can often lead to increased phishing and social engineering attacks," advised cybersecurity consultant Mark Lewis.
"Every user must now consider their online safety protocols and act accordingly, as larger breaches like this one can often lead to increased phishing and social engineering attacks,"
This leak has raised further discussions within the cybersecurity community regarding how social media corporations manage user data. Questions about whether companies do enough to protect user information and how they respond following breaches remain pressing issues. "This incident serves as a wake-up call for tech giants. The stakes are higher than ever when it comes to securing user data, and they owe that to their users," stated privacy advocate Sarah Malone.
Looking Ahead
Looking forward, as this situation develops, many are left wondering how X will address this overwhelming breach and what it means for the future of user privacy on social media. With pressure mounting from users and various stakeholders, the company faces a critical juncture in restoring trust and ensuring data security. The breach not only raises alarms about the safety of personal data but also accentuates the need for rigorous data protection policies in the tech industry.
