Anime streaming service Crunchyroll has acknowledged a data breach involving customer service ticket details following an incident with a third-party vendor, after a hacker claimed unauthorized access to user data and internal systems. The platform, a joint venture between Sony Pictures Entertainment and Aniplex, is investigating the breach, which potentially exposed millions of user records.
Crunchyroll, known for its vast library of over 2,000 titles in multiple languages and 15 million global subscribers, was alerted to a threat actor’s claims of compromising user data. The company is collaborating with cybersecurity experts to delve deeper into the matter and has not found proof of ongoing unauthorized access.
Materials shared with TechCrunch suggest the attacker might have infiltrated Crunchyroll’s Zendesk support system, gaining access to internal Slack messages and support data, purportedly obtained from an employee at Telus Digital. The hacker allegedly accessed customer support ticket data until early 2025 before losing access. The breach appears unrelated to a recent incident impacting Telus Digital, the support partner possibly implicated in this breach.
Despite being pressed for further details, Crunchyroll and Telus Digital have not provided additional comments at this time.
Source: TechCrunch