Hacker Claims Twilio’s Sendgrid Data Breach, Selling 848,000 Records

A hacker utilizing nan othername Satanic is claiming work for what could beryllium a awesome breach involving SendGrid, a cloud-based email transportation level owned by Twilio.

According to a station made earlier today, Thursday, April 3, 2025, connected Breach Forums, a celebrated cybercrime platform, Satanic is offering nan allegedly stolen information for $2,000 and has shared a sample to support nan claim. In nan post, nan hacker stated:

“We would for illustration to denote nan breach of nan largest Email Hosting Provider – SendGrid is cloud-based email infrastructure provides businesses pinch email transportation management. (3 April 2025).”

Screenshot credit: Hackread.com

What’s allegedly included successful nan breach?

Satanic claims nan database includes afloat customer and institution accusation for 848,960 entities. Hackread.com’s investigation squad analysed nan sample information provided by nan hacker, which included nan pursuing information:

• Customer emails, telephone numbers, beingness addresses, cities, states, countries, societal media profiles, and LinkedIn IDs

• Company-level information specified arsenic domain names, revenue, worker counts, SEO performance, hosting providers, and rankings from services for illustration Cloudflare and Tranco

• Financials for illustration revenue, operating income, nett income, and different business metrics

• Employee information and immoderate public-facing executive details

• Information connected institution tech stacks, including CMS platforms, costs solutions, and CRM tools

Additionally, among nan companies listed successful nan sample information are Bank of America, Bazaarvoice, and nan BBC. The information appears to beryllium system and highly elaborate and includes dozens of metadata fields that spell acold beyond conscionable interaction information.

Each introduction features web analytics metrics, soul email addresses (including those of high-level staff), telephone numbers, geolocation data, and moreover insights into backend technologies and accessibility compliance. If nan information is authentic, this could beryllium much than a accepted leak.

Sample information leaked by nan hacker (Screenshot credit: Hackread.com)

Satanic’s way record

This isn’t nan first clip that Satanic has been tied to a awesome information breach. In September 2024, nan aforesaid hacker was down nan Tracelo incident, wherever individual information connected 1.4 cardinal users of a smartphone geolocation search work was leaked online. Beyond high-profile breaches, Satanic is besides known successful underground communities for distributing infostealer logs via Telegram.

Twilio’s caller breach history

This would besides not beryllium nan first clip Twilio, SendGrid’s genitor company, has been associated pinch information exposures. On July 4, 2024, nan hacker group ShinyHunters leaked a dataset containing 33 cardinal telephone numbers belonging to users of Twilio Authy, a two-factor authentication app.

Then, in September 2024, a abstracted breach exposed 12,000 telephone records done a third-party instrumentality utilized by a Twilio customer. While neither incident confirmed a nonstop discuss of Twilio’s infrastructure, they did raise questions astir information security.

Still unconfirmed

At nan clip of writing, Hackread.com has reached retired to Twilio for comment. It’s important to statement that these are unverified claims made by a hacker, and nary charismatic confirmation has been issued by Twilio aliases SendGrid.

However, fixed nan quality of nan sample and nan floor plan of nan individual making nan claims, information teams and impacted organizations whitethorn want to return a person look.

This is simply a processing story.