URGENT UPDATE: A hacker known as “Lovely” has just leaked the personal data of over 2.3 million Wired.com users, raising serious concerns about a potential breach affecting as many as 40 million accounts across multiple Condé Nast brands. The alarming disclosure was made on December 20, 2025, on a newly launched hacking forum called Breach Stars.
The leaked data includes sensitive details such as full names, email addresses, user IDs, and timestamps for account creation and updates. While there is no exposed password or payment information, the presence of real email addresses and unique user IDs poses significant privacy risks. Most records lack personal information like phone numbers and addresses, indicating they were not mandatory during sign-up. However, many entries feature personal emails from common providers, confirming the authenticity of the data.
Authorities are deeply concerned as the breach potentially involves data from various Condé Nast properties, including GQ, Vogue, The New Yorker, and others. According to the hack, the records claimed include:
– GQ: 994,072
– Self: 2,075,122
– Wired: 2,366,576
– Vogue: 1,959,212
– Allure: 1,871,068
– Bon Appétit: 2,030,162
– The New Yorker: 6,796,525
– Glamour: 1,461,408
– Vanity Fair: 1,637,038
– Teen Vogue: 586,194
– Golf Digest: 684,549
– Condé Nast Traveler: 1,080,711
The hacker also mentioned an entry labeled “NIL,” comprising 9,468,938 accounts not associated with any specific Condé Nast brand, indicating potential centralized account infrastructure vulnerabilities.
As of now, Condé Nast has not issued an official statement confirming or denying the breach, leaving users and industry experts on high alert. Attempts to validate the leaked data are ongoing, and early reports from social media have confirmed that samples contain legitimate user information, including names and emails.
In a troubling twist, the hacker previously approached journalists, including those from DataBreaches.net, posing as a researcher. However, credibility issues arose, and the hacker resorted to threats to release the data publicly, further casting doubt on their claims.
The security implications of this incident are profound, with the hacker’s access suggesting vulnerabilities within Wired.com’s account system or a broader Condé Nast identity platform. The exact method of extraction remains undisclosed, but analysts from Hackread.com confirm the legitimacy of the leaked records.
Until Condé Nast officially addresses the breach and its implications, the status of this sensitive data remains uncertain. Users are urged to remain vigilant and monitor their accounts closely.
This is a developing story, and further updates will follow as more information becomes available.
