United States
Dating
OkCupid Data Scrape: Hacker Claims to Sell 35M User Records
A threat actor using the alias authentic claims to be selling a database of 35 million OkCupid users, saying it was scraped after gaining privileged access to the dating app's internal API. The advertised data is highly sensitive, reportedly including names, emails, phone numbers, hashed passwords, dates of birth, precise location, sexual orientation, and dating preferences, with Telegram and Session contacts for buyers. The claim is unverified and OkCupid has not publicly addressed it.
United States▣Post details
United States!Allegedly exposed
- 35M user profiles (claimed)
- Names, usernames & emails
- Phone numbers
- Hashed passwords
- Dates of birth & age
- Gender, pronouns & sexual orientation
- Precise location (city, GPS coords)
- Dating prefs, signup IP & billing tier
◱Screenshot
⚠Potential impact
If genuine, a 35 million-user dating database would be among the most dangerous exposures possible: it links real identities to sexual orientation, precise location, dates of birth, and intimate dating preferences, alongside emails, phone numbers, and hashed passwords. That combination enables targeted harassment, sextortion, doxxing, stalking, and identity theft, and is especially dangerous for users in places where sexual orientation can carry legal or physical risk. The scale and authenticity are unconfirmed, and "internal API scraping" claims should be treated with caution.
iStatus
UnverifiedA column listing and sample records were posted to an underground forum, with Telegram and Session contacts for buyers; the sample records and contact identifiers are not reproduced here. The claim has not been independently confirmed and OkCupid has not publicly addressed it.
DARK WEB INFORMER - THREAT INTELLIGENCE
