Analytics vendor Mixpanel says it isn’t the supply of knowledge stolen from Pornhub and says the data was final accessed by an worker of the grownup web site.
“Mixpanel is conscious of reviews that Pornhub has been extorted with knowledge that was allegedly stolen from us,” a Mixpanel spokesperson instructed The Register. “We are able to discover no indication that this knowledge was stolen from Mixpanel throughout our November 2025 safety incident or in any other case.”
Mixpanel’s assertion follows an earlier alert from Pornhub blaming the analytics supplier for the safety incident.
“The information was final accessed by a reliable worker account at Pornhub’s mother or father firm in 2023,” the Mixpanel spokesperson continued. “If this knowledge is within the fingers of an unauthorized celebration, we don’t imagine that’s the results of a safety incident at Mixpanel.”
An Aylo spokesperson declined to reply The Register‘s questions in regards to the breach. “We stand by our assertion,” the spokesperson mentioned, including that it the corporate will share updates as further data turns into obtainable.
Final month, Mixpanel disclosed a “smishing marketing campaign” that it detected on November 8 and that affected some OpenAI clients.
Smishing, which mixes phishing and SMS messages, is a social engineering rip-off incessantly utilized by ShinyHunters and its bigger cybercrime collective Scattered Lapsus$ Hunters to amass worker credentials, bypass multi-factor authentication, and acquire preliminary entry to company programs.
Knowledge extortion crew ShinyHunters, when contacted by The Register, claimed duty for the stolen Pornhub analytics knowledge and mentioned it consists of customers’ search and video-watching histories. ShinyHunters wouldn’t, nevertheless, say how or after they obtained the information.
In a December 12 discover to customers, Pornhub mentioned the breach concerned “choose Premium customers'” knowledge and pinned the blame on Mixpanel:
A Google spokesperson instructed us “there’s no indication of affect to Google.” In a Tuesday replace, nevertheless, the grownup content material web site eliminated its earlier mentions of Google and ChatGPT:
The final line about “securing the affected account and stopping the unauthorized entry” appears to line up with Mixpanel’s allegation in regards to the stolen knowledge being final accessed by a Pornhub mother or father firm worker – after which both obtained by ShinyHunters through phishing or from a disgruntled worker, alongside the traces of what occurred with CrowdStrike final month.
In November, CrowdStrike confirmed that it had fired a “suspicious insider” who shared screenshots of inside programs with Scattered Lapsus$ Hunters.
A supply with information of the Pornhub incident instructed The Register that “the construction of the exfiltrated knowledge is per an everyday knowledge export.” ®
