Flickr Discloses Data Breach Linked to Third-Party Email Provider Vulnerability
Learn More
The photo-sharing platform Flickr is reporting a data breach on February 5, 2026, caused by a security flaw at a third-party email service provider.
Attackers exploited the flaw to gain unauthorized access to a vulnerable endpoint, allowing them to view or steal Flickr user information. Flickr removed links to the compromised endpoint and requested a full investigation from the service provider.
The compromised data includes:
- Full names
- Email addresses
- Flickr usernames
- Account types
- IP addresses
- General location data
- Platform activity records
The number of affected individuals and the third party provider name are not disclosed. Flickr has notified relevant data protection authorities in both the United States and Europe.
The company notification emails to impacted users advises them to monitor their accounts for suspicious changes or unauthorized activity. No mention of identity theft protection services was made in the initial disclosure.
