Crunchyroll, the anime streaming service owned by Sony Group Corporation, is investigating a cyberattack following claims that hackers stole personal data from nearly 6.8 million users.
The breach allegedly occurred on March 12, when a threat actor gained access to an Okta SSO account used by a support agent employed by Telus International. Malware was reportedly deployed to steal login credentials.
Attackers accessed Crunchyroll’s Zendesk, Google Workspace Mail, Jira Service Management, and Slack platforms, extracting up to 8 million support ticket records. The stolen data includes names, email addresses, login details, IP addresses, and geographic locations.
The hackers claimed they had access for 24 hours and demanded $5 million in ransom, but Crunchyroll did not respond. No public release of data has been confirmed.
Crunchyroll reported over 17 million paid members as of March 2025.