Hacker claims Condé Nast breach, threatens release of data from 2.3 million WIRED subscribers

Condé Nast, the global media company that publishes WIRED and several other major titles, is facing scrutiny after a hacker claimed to have breached its systems and obtained personal data tied to more than 2.3 million WIRED subscribers, with threats to release tens of millions of additional records linked to other publications.

The alleged breach surfaced after a threat actor using the alias “Lovely” posted on multiple hacking forums on Dec. 20, offering access to what was described as a WIRED subscriber database in exchange for a small amount of forum credits, equivalent to about $2.30. The individual accused Condé Nast of ignoring vulnerability reports and failing to adequately address security weaknesses, while warning that more data tied to the company’s broader portfolio could be leaked in the coming weeks.

The dataset attributed to WIRED contains 2,366,576 total records and 2,366,574 unique email addresses, with account timestamps spanning from April 1996 through Sept. 9, 2025. Each record includes a unique internal subscriber identifier and an email address, along with optional personal details such as first and last name, phone number, physical address, gender, and date of birth. Many of these optional fields are blank.

Analysis of the dataset shows that roughly 12 percent of records include both a first and last name, about 8 percent include a physical address, fewer than 3 percent list a birth date, and just over 1 percent contain a phone number. A much smaller subset, 1,529 records, includes a more complete profile with full name, address, phone number, birth date, and gender.

The records also contain account creation and update timestamps, last session information, and WIRED-specific account fields such as display usernames and internal account dates. In addition to WIRED, the hacker claimed access to data connected to other Condé Nast brands, citing record counts associated with publications including The New Yorker, Vogue, Vanity Fair, Epicurious, SELF, Allure, Glamour, Architectural Digest, Golf Digest, Teen Vogue, Condé Nast Traveler, and others, amounting to a claimed total of more than 40 million records.

Independent technical analysis conducted by security researchers found that at least a portion of the data appears authentic. Twenty records were validated as belonging to legitimate WIRED subscribers, and additional verification linked some of the leaked entries to previously compromised credentials found in infostealer malware logs. Based on that analysis, the dataset was subsequently added to the Have I Been Pwned breach notification service, allowing individuals to check whether their email addresses appear in the exposed data.

The incident has also drawn attention because of the hacker’s earlier interactions with a well-known breach disclosure intermediary. In late November, the individual approached a third party claiming to be a security researcher seeking assistance with responsible disclosure of vulnerabilities that allegedly allowed unauthorized access to user account information. After stating that only a small number of records had been accessed for proof, the individual later claimed to have downloaded the full database and proceeded to leak it publicly.

Condé Nast has not issued a public statement confirming or denying the breach and has not responded to detailed questions about the claims. As of now, there is no indication that the company has acknowledged the incident publicly or disclosed whether subscriber data across its properties has been compromised.