X faces another major data breach, 201 million records exposed

ThinkingOne, a self-proclaimed data enthusiast, has released a newly compiled dataset merging the 2022 breach with a January 2025 leak, exposing 201 million records now freely available on a well-known data breach forum

Elon Musk’s social media platform, X, is once again embroiled in a major cybersecurity crisis after a staggering 201 million user records were leaked online. The X data breach, orchestrated by an individual known as ThinkingOne, has reignited concerns over X’s data security protocols and its ability to safeguard user information.

The origins of this latest security breach at X trace back to January 2022, when X, formerly Twitter, discovered a critical vulnerability through its bug bounty program. This flaw allowed attackers to extract user data using only an email address or phone number. While X moved to patch the vulnerability, by July 2022, reports surfaced that hackers had already exploited it, with user data being sold on the dark web.

At the time, X attempted to reassure users that its security measures were robust enough to prevent further incidents. However, the steady emergence of new data leaks has cast doubt on the platform’s claims, leading many cybersecurity experts to question whether X has done enough to protect user information.

ThinkingOne: Unmasking X’s security flaws or a cyber threat?

Now, moving ahead to April 2025, and ThinkingOne, a self-proclaimed data enthusiast, has unveiled a newly compiled dataset combining information from the 2022 breach with an additional leak from January 2025. The result is a database containing 201 million records exposed, now available for free on a well-known data breach forum.

ThinkingOne, who denies being a hacker, asserts that their actions are intended to expose X’s ongoing security failures. In an email exchange, they claimed to have verified a random sample of 100 records, with 92% matching the correct user IDs and screen names. Additionally, they suggested that as many as 2.8 billion records may have been exfiltrated, hinting at either an insider leak or an advanced cyberattack on X far beyond previous estimates.

X’s denial amid growing security concerns

X has previously downplayed reports of widespread breaches. In January 2023, the company denied any recent security compromises beyond the known 2022 incident. It acknowledged that 5.4 million accounts were exposed in the August 2022 breach but dismissed claims of 400 million leaked accounts as unverified. Furthermore, X stated that the latest dataset had no direct link to a vulnerability within its systems.

Despite these assurances, cybersecurity experts remain sceptical. They warn users to take proactive security measures, such as changing passwords, enabling two-factor authentication, and monitoring accounts for suspicious activity.

Rising concerns and the future of X’s security

The latest data breach underscores the vulnerabilities inherent in large-scale social media platforms. With increasing threats from cybercriminals and potential insider risks, X now faces mounting pressure to enhance its cybersecurity infrastructure. Regulatory authorities and data protection agencies are likely to scrutinize the company’s response, as millions of users remain at risk.

As investigations unfold, the true extent of this data breach remains to be seen. For now, users are advised to remain vigilant, as the battle for data security continues.