Substack reportedly suffered a data extraction in late 2025 that exposed approximately 697,313 user records obtained via a scraping method. The compromised fields included full names, email addresses, phone numbers, user and Stripe IDs, profile pictures, biographies, account creation dates, and social media handles, and the company says the method was quickly identified and patched. #Substack #Stripe
Keypoints
- Approximately 697,313 Substack records were reportedly extracted via a scraping method in late 2025.
- Leaked fields include full names, email addresses, phone numbers, user IDs, Stripe IDs, profile pictures, biographies, account creation dates, and social media handles.
- The incident affected only a small fraction of Substack’s total user base.
- Substack reportedly identified the scraping method quickly and deployed a patch.
- The compromise is described in reports as alleged and remains subject to ongoing review.
Read More: https://dailydarkweb.net/substack-data-breach-leads-to-leak-of-nearly-700000-records/