A man holding a phone with screen shot of Pornhub on iPhone. Pornhub is a pornographic video sharing and pornography website

A man holding a phone with screen shot of Pornhub on iPhone. Pornhub is a pornographic video sharing and pornography website - Credit: Twinsterphoto / Depositphotos - License: DepositPhotos

email addresses stolen

Wednesday, 17 December 2025 - 17:50

1.5 Million Dutch Pornhub accounts compromised in cyber attack

Data from a total of 1.5 million Netherlands based Pornhub accounts has been stolen by the hacker group ShinyHunters, RTL reported. The group claims to have account data from 2016 up to the end of 2023. Globally, data from an estimated 201 million users of the pornography site may have been affected.

The stolen information includes email addresses, viewing history, specific search queries, as well as timestamps and IP addresses showing where videos were accessed. RTL Nieuws accessed data from several Dutch users and confirmed that the email addresses and search terms were accurate.

"A recent cybersecurity incident involving Mixpanel, a third-party data analytics provider, has impacted some Pornhub Premium users," Pornhub stated on Friday. "Specifically, this situation affects only select Premium users. It is important to note this was not a breach of Pornhub Premium's systems. Passwords, payment details, and financial information remain secure and were not exposed."

ShinyHunters have carried out cyberattacks on several other major companies in the past, including Microsoft, Ticketmaster, and Jaguar. The group did not hack Pornhub directly; instead, the breach occurred at Mixpanel, the analytics service used by the adult website. PornHub says it has not worked with Mixpanel since 2021, indicating the stolen records are historical analytics data from 2021 or earlier.

The hackers usually target organizations to demand ransom or sell stolen data. They have not confirmed whether Pornhub was presented with any demands, although some reports suggest the group requested Bitcoin payments to prevent the publication of the data.

Mixpanel also confirmed the incident, noting that there is no evidence linking it to a separate cyberattack on the company last month, in which a SMS phishing (smishing) attack enabled threat actors to compromise its systems.

"We can find no indication that this data was stolen from Mixpanel during our November 2025 security Incident or otherwise," the company said to BleepingComputer. "The data was last accessed by a legitimate employee account at Pornhub’s parent company in 2023. If this data is in the hands of an unauthorized party, we do not believe that is the result of a security incident at Mixpanel."

Make NL Times your top Google source