Impact & Downstream Threats
This breach carries moderate risk due to the nature of exposed data fields and the scale of affected records.
- Targeted phishing campaigns using exposed email addresses
Breach Intelligence
Executive Summary
In late January 2026, the threat actor group ShinyHunters (operating as part of the "Scattered LAPSUS$ Hunters" collective) claimed responsibility for a significant data exfiltration targeting Match Group, the parent company of Hinge, OkCupid, and Match.com. The breach was executed via a sophisticated voice phishing (vishing) campaign that compromised an employee's Okta Single Sign-On (SSO) credentials, subsequently granting the attackers access to internal dashboards and the mobile marketing platform AppsFlyer. While the group initially boasted of stealing over 10 million records, verified samples indicate the exposure of approximately 2 million unique advertising IDs (MAIDs) and a list of 85,000 email addresses. Additional leaked data included internal corporate documents, Hinge subscription transaction details, and technical debugging logs from OkCupid. Match Group has stated that core user passwords, full financial information, and private message histories do not appear to have been compromised, though the company is currently notifying affected individuals regarding the risk of secondary phishing attacks.,
About Match Group
Operator of online dating platforms including Tinder, Hinge, and others.
Data Points Exposed
Dark Web Verification
Status: Confirmed
- Dataset containing approximately 85K records identified in breach intelligence sources.
- The data is indexed and searchable across breach notification platforms.
Recommended Actions
⚠️ Do not assume this is low sensitivity.
Non-clients may request a breach impact review.
Frequently Asked Questions
In January 2026, Match Group experienced a data breach that exposed approximately 85K records containing personal information.
The exposed data includes fields such as email address.
Approximately 85K records were affected based on current breach intelligence.
Protect Yourself
Check If You’re Affected
Enter your email to check if your data appears in this breach.
Get Free Breach Alerts
Be the first to know when new breaches are disclosed.
High-Risk? Get an Exposure Audit
Full-spectrum exposure audits for executives and public figures.
ObscureIQ Advisory
We combine proprietary dark web access with commercial and restricted breach intelligence to verify exposure and assess real-world risk.
- A public-facing individual
- A high-profile executive
- A customer of Match Group
- Or concerned about credential reuse
Powered by the ObscureIQ Breach Intelligence Database
© 2026 ObscureIQ · All Rights Reserved · Data Licensing
Latest from ObscureIQ
What Is Credit Monitoring? And Do I Want It? (Answer: Not Really)
Lock Down Browsers. Wipe Employee Footprints. Win Breach Wars.
Sextortion Spam