verified2026-04-24

UdemyUdemy breach

udemy.com · 1,401,259 records compromised

Records
1.4M
Breach date
2026-04-24
Domain
udemy.com
Data classes
7

Description

In April 2026, online training company Udemy was the victim of a “pay or leak” extortion attempt perpetrated by the ShinyHunters group. The data was subsequently leaked publicly and contained 1.4M unique email addresses belonging to customers and instructors. The data also included names, physical addresses, phone numbers, employer information and instructor payout methods including PayPal, cheque and bank transfer.

Compromised data classes· 7

Email addressesEmployersJob titlesNamesPayment methodsPhone numbersPhysical addresses

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Breach
Vimeo
Breach
DataCamp
Breach
7-Eleven
Breach
Duolingo
Breach
Mytheresa
Breach
Woflow
Sourced from Have I Been Pwned. Aggregate metadata only — no PII. Curated by Adam Lundqvist, Founder at SQUR.