Explore Talent, an online platform connecting actors, models, musicians, and other performing arts professionals with casting directors and talent agencies, exposed approximately 11.4 million user records through a vulnerable API identified in August 2024. The API misconfiguration allowed records to be enumerated and scraped without authorization. Of those records, 8.9 million unique email addresses were confirmed and added to Have I Been Pwned. This incident is separate from a prior Explore Talent breach that occurred in 2022. The exposed data consists of email addresses belonging to registered users of the platform, most of whom are aspiring performers who submitted personal contact information while seeking work. While email addresses alone may seem limited, the entertainment context adds meaningful risk. Attackers can use these addresses to craft convincing audition scams, fake casting calls, or agency impersonation schemes aimed at people who are actively seeking opportunities and may be more likely to respond. No class-action litigation or regulatory action specific to this incident has been publicly documented, and Explore Talent has not made detailed public statements about it. Affected users should be alert to unsolicited emails offering auditions, representation, or industry opportunities, as these could be phishing attempts exploiting the breach. Treating any unexpected contact from casting directors or agencies with extra scrutiny is a practical precaution.

Talent-discovery marketplaces collect performer identity, contact details, photos, resumes, audition history, recruiter interactions, and payment-adjacent records across casting workflows.

Explore Talent has maintained a low public profile following two separate breach events. No major organizational changes have been publicly documented. The platform continues to operate in the talent discovery market.