Breach Roundup: Spotify Metadata Dumped Online

Also: SudamericaData Leak, RaccoonO365 Arrest and Nefilim Conspirator Pleads Guilty Pooja Tikekar (@PoojaTikekar) • December 25, 2025

Every week, Information Security Media Group rounds up cybersecurity incidents and breaches around the world. This week, hackers scraped Spotify metadata, Nissan disclosed a third-party breach, millions of Argentines were exposed in a data broker leak, African authorities carried out a sweeping cybercrime crackdown, Nigerian police arrested the operator behind RaccoonO365, the U.S. DOJ charged an ATM jackpotting ring and a Nefilim ransomware affiliate pleaded guilty.

See Also: Going Beyond the Copilot Pilot - A CISO's Perspective

A pirate activist group going by "Anna's Archive" scraped Spotify's music library, posting the popular streaming platform's metadata online.

Hacktivists in a blog post said the data scrape included 256 million rows of track records and 86 million audio files, or about 300 terabytes of metadata. As of Dec. 21 ...