ShellCodeX
Tools β€’ Events β€’ News β€’ Insights
ShellCodeX Breach Report

Udemy Data Breach

udemy.com
Significant exposure
Verified breach
Accounts exposed 1,401,259
Breach date 24 Apr 2026
Added to tracker 26 Apr 2026
Data classes 7

What happened

In April 2026, online training company Udemy was the victim of a β€œpay or leak” extortion attempt perpetrated by the ShinyHunters group. The data was subsequently leaked publicly and contained 1.4M unique email addresses belonging to customers and instructors. The data also included names, physical addresses, phone numbers, employer information and instructor payout methods including PayPal, cheque and bank transfer.

Exposed data

Email addresses Employers Job titles Names Payment methods Phone numbers Physical addresses

Recommended actions

  • Watch for targeted phishing emails referencing Udemy β€” attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk β€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP