Substack Confirms Data Breach Affecting 700,000 Users After Hacker Leaks Information

Substack reports a 2025 data breach affecting 700,000 users, exposing emails and phone numbers, but not passwords or payments.

By Content Team

Feb 6, 2026

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

Newsletter platform Substack disclosed a security breach after hackers leaked data from nearly 700,000 user accounts on cybercrime forums. The October 2025 attack exposed email addresses, phone numbers, names, and profile information, but passwords and payment details remained secure.

CEO Chris Best notified the platform's 35 million subscribers on February 3, months after the initial breach. The hacker described their "scraping" attack as "noisy," which helped Substack detect and stop it quickly.

While there's no evidence the stolen data has been misused, users should watch for suspicious emails and texts targeting the compromised information.

Source: Security Week

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Cybercriminals Selling 139GB of Stolen US Utility Engineering Data for $585K

Jan 8, 2026

Chinese Hackers Hijacked Notepad++ Updates Through Hosting Provider Compromise

Feb 2, 2026

Russian Hackers Permanently Damage Equipment in Attack on Polish Power Grid

Jan 30, 2026

Instagram Denies Data Breach After Mass Password Reset Emails Spark User Confusion

Jan 13, 2026