The anime streaming platform Crunchyroll may have been the target of a major cyberattack, according to recent reports. More than 100 GB of data is believed to have been leaked, potentially including subscriber information.
The incident reportedly occurred on March 12, 2026, and is linked to a possible security vulnerability involving a third-party partner. So far, the company has not issued an official statement, increasing concern among users.
According to available details, the breach may have originated from a compromised account at Telus Digital, a partner operating in India. An employee was allegedly targeted through a phishing email containing malware, allowing attackers to capture login credentials and gain unauthorized access to internal systems.
Once inside, the attackers reportedly focused on sensitive systems, including customer databases and internal content tools. Although the intrusion was detected within approximately 24 hours, and access was quickly blocked, that timeframe may have been sufficient for a large-scale data extraction.
The compromised data may include email addresses, IP addresses, and potentially even credit card information. However, there is still no official confirmation regarding the full scope of the breach or its direct impact on users.
Telus has confirmed that a security incident occurred within its systems but has shared only limited details. Meanwhile, Crunchyroll has not clarified whether its own infrastructure was directly affected.
This would not be the first such case. In 2023, a previous data breach resulted in more than $16 million in settlements and compensation.
If confirmed, the incident could have serious consequences, including loss of user trust and potential regulatory penalties. In the meantime, users are advised to remain vigilant, monitor their accounts, and take steps to protect their personal data until further information is released.
Filed in . Read more about Cyberattack, Cyberattacks and Streaming Video.