A massive data breach has rocked the social media landscape after a hacker, using the alias “ThinkingOne,” claimed to have publicly leaked the personal data of over 200 million users of X, formerly known as Twitter. The leak, which surfaced on the dark web forum BreachForums, includes a 34GB downloadable file with more than 201 million user records, according to cybersecurity firm SafetyDetective.com, which first reported the breach.
ALSO READ: Now Open: Pan-India Registration for Fraud Investigators!
The compromised data includes X screen names, user IDs, full names, locations, email addresses, follower counts, profile information, time zones, and profile images, raising serious concerns about user privacy and potential misuse. SafetyDetective researchers verified a portion of the data, confirming its authenticity. “We reviewed the information corresponding to 100 users in the list, and we found that it matched what was shown on Twitter,” the researchers noted. They also confirmed the validity of a large number of email addresses, though they couldn’t definitively link each to its respective X account.
In a conversation with Forbes, the alleged hacker distanced themselves from criminal intent, stating, “I don’t consider myself a hacker, just a data enthusiast trying to ensure everything I do is legal.” Despite the claim, the implications of the breach are far-reaching. ThinkingOne described this leak as “the largest social media breach ever” and suggested that even more sensitive information—including passwords and phone numbers—may exist.
Interestingly, ThinkingOne claimed they first tried to notify X through multiple channels but received no response. They said the motivation for the public release was due to the platform and the public being unaware of the breach’s scale. The hacker also revealed that the leaked data stemmed from two separate incidents—one in January 2022 and another, more recent breach, in January 2025, which allegedly exposed over 2.8 billion unique Twitter IDs and screen names. ThinkingOne told Forbes that they verified a representative sample, and 92 out of 100 checked records correctly matched user IDs and screen names.
Empanelment for Speakers, Trainers, and Cyber Security Experts Opens at Future Crime Research Foundation
The origin of the breach remains unclear, but the scale has reignited debates around data privacy, platform accountability, and cybersecurity. The claim that this data could only have been collected through inside access or a highly sophisticated attack has sparked speculation about a potential insider threat at X.
As of now, X has not issued an official response to the alleged leak. Cybersecurity experts are urging users to remain cautious and recommend steps such as changing passwords, enabling two-factor authentication, and avoiding suspicious links or messages.
This breach is a stark reminder of the growing vulnerabilities in digital platforms, and how user data—once leaked—can have lasting repercussions.