On March 23, Bleeping Computer reported:
Popular anime streaming platform Crunchyroll is investigating a breach after hackers claimed to have stolen personal information for approximately 6.8 million people.
“We are aware of recent claims and are currently working closely with leading cyber security experts to investigate the matter,” Crunchyroll initially told BleepingComputer.
“Our investigation is ongoing, and we continue to work with leading cybersecurity experts. At this time, we believe that the information is primarily limited to customer service ticket data following an incident with a third-party vendor,” Crunchyroll shared in a later statement.
Since that report, there was also a report that 1.2 million customer records were sold online. The data were subsequently shared with HaveIBeenPwned, who writes:
In March 2026, the anime streaming service Crunchyroll suffered a data breach alleged to have impacted 6.8M users. The exposed data is reported to have originated from the company’s Zendesk support system where “name, login name, email address, IP address, general geographic location and the contents of the support tickets” were exposed. A subset of 1.2M email addresses from an alleged 2M record dataset being sold was later provided to HIBP.
