twitter.com
About This Breach
The Twitter API Vulnerability Data Breach in 2021 exposed over 5.4 million user records by exploiting a flaw that allowed attackers to input phone numbers and email addresses to retrieve associated Twitter IDs. The leaked data included both public and private information such as names, login names, locations, verified status, phone numbers, and email addresses.
Data Exposed
Breach Details
| Breach Type | Data Breach |
| Searchable | Yes |
| Verified | Yes |
| Sensitive Data | No |
| Reference | No reference available |
Frequently Asked Questions
When did the Twitter data breach happen?
Twitter was breached in Jan 2022. The breach was added to the XposedOrNot index on April 11, 2025.
How many records were exposed in the Twitter breach?
5,308,134 records were exposed, making it the #190 largest of the 763 breaches in our index.
What data was exposed in the Twitter breach?
The exposed data includes: Usernames, Names, Email addresses, Phone numbers, Geographic locations.
What should I do if I was affected by the Twitter breach?
Change your password on the affected service (and anywhere you reused it), turn on two-factor authentication, and set up free breach alerts on XposedOrNot so you know the moment your email appears in a new breach.
More Information Technology Breaches
What Should You Do?
Enable Two-Factor Authentication
Add 2FA on all supported accounts using an authenticator app like Google Authenticator or Authy.
Watch for Phishing Calls & SMS
Be cautious of unexpected calls or texts asking for personal information.
Monitor Your Accounts
Set up login alerts and review account activity regularly for suspicious access.