An alleged database containing Grindr user information has surfaced on cybercrime forums, with a threat actor offering the data for approximately $400. The claims remain unverified, and Grindr has stated that it has found no credible evidence of unauthorized access to its systems. Despite the uncertainty surrounding the source and authenticity of the data, the listing has attracted attention due to the nature of the information it allegedly contains and the potential privacy implications for affected users.
What the Alleged Dataset Contains
According to information shared by the seller, the database contains millions of records linked to Grindr accounts. The claimed data includes user identifiers, usernames, first and last names, email addresses, account verification statuses, password hashes, and OAuth-related information.
Additional technical details are also said to be included, such as IP addresses, device information, user agents, account timestamps, and geolocation data. Some reports indicate that location information may include city and country details, while certain records allegedly contain precise geographic coordinates. Cybernews, which reviewed sample records provided by the seller, reported that the exposed information also included dates of birth, profile descriptions, SHA256-hashed phone numbers, and bcrypt password hashes.
Sensitive Personal Information Allegedly Exposed
Beyond account and technical information, the seller claims the dataset contains highly sensitive profile data associated with users of the platform. The alleged records include details relating to sexual orientation, gender, physical characteristics, and dates of birth. Particularly notable are claims that the dataset contains information regarding HIV status and the dates of users' most recent tests. At the time of writing, these claims have not been independently verified by third parties.
Questions Surrounding the Source
The origin of the alleged database remains unclear. Reports have noted that the data could have originated from compromised user accounts, a third-party service provider, or another external source rather than a direct compromise of Grindr's infrastructure. Cybernews researchers also observed that some timestamps contained in the sample data appeared relatively recent, with entries reportedly dating as late as May 2026. However, the limited sample size makes it difficult to determine the full scope, age, or legitimacy of the dataset.
The Unusually Low Asking Price
One aspect that has raised questions is the seller's asking price. The dataset is reportedly being offered for around $400, a figure that appears low compared to prices often associated with large-scale data sales. The seller, identified by the alias "nilojeda," is reportedly accepting payment in cryptocurrency. The low price has led to speculation about the size, exclusivity, or overall value of the data being offered, although no definitive conclusions can be drawn from the listing alone.
Grindr Responds
Grindr has not confirmed any breach related to the claims. In comments reported by Escudo Digital, a company spokesperson stated that the company had found no credible evidence of unauthorized access to or a breach of its systems and that its ongoing investigation had not established the legitimacy of the allegations. As of publication, no independent confirmation has emerged to verify the seller's claims or determine whether the data originated from Grindr itself.
Conclusion
The alleged Grindr database remains unverified, but the claims have generated attention due to the volume and sensitivity of the information reportedly included. While the seller asserts that millions of user records are involved, neither the authenticity of the dataset nor the method by which it was allegedly obtained has been confirmed. Until further evidence emerges, the incident remains a claim circulating within cybercrime forums rather than a confirmed breach.
No comments yet — be the first.
Join the conversation
Log in to leave a comment