Vimeo confirms customer data accessed following Anodot breach | brief – SC Media

Data Security, Supply chain, Breach, Identity (Credit: Getty Images) Vimeo has confirmed that unauthorized access to some customer and user data occurred as a result of a recent breach at Anodot, a data anomaly detection company. The video platform stated that the exposed information primarily includes technical data, video titles, and metadata, with some customer email addresses also accessed, according to a recent report by Bleeping Computer. The breach was claimed by the ShinyHunters extortion group, which threatened to leak the data by April 30 if a ransom was not paid. ShinyHunters also warned Vimeo of “several annoying digital problems” to come. The attack on Anodot involved attackers stealing authentication tokens, which were then used to access customer environments, primarily Snowflake, and exfiltrate data. This incident follows similar attacks on other organizations, including Rockstar Games. Vimeo has stated that the compromised data does not include video content, account credentials, or payment information, and its operations remain unaffected. The company has disabled Anodot credentials, removed the service’s integration, and is investigating the incident with third-party security experts while also notifying law enforcement. Source: Bleeping Computer Related Exposed Checkmarx data tied to March supply chain hack SC Staff April 29, 2026 Checkmarx
Read More