Cyber Incident Victim: Flickr

On February 5, 2026, Flickr, the photo-sharing community platform, became aware of a security incident impacting user data. The vulnerability originated not within Flickr's own systems but within a system operated by an unnamed third-party email service provider. Upon being alerted to this flaw, Flickr acted swiftly, shutting down access to the compromised system within hours of discovery. The company assessed that this vulnerability potentially allowed unauthorized access to certain Flickr member information stored or processed by that external provider. Information potentially exposed included user names, email addresses, usernames, Flickr account types, IP addresses, general location data, and Flickr activity data. Flickr explicitly stated that user passwords and payment card numbers were unaffected by this incident and remained secure.

Flickr's notification to users clarified that while unauthorized access to the data was possible due to the vulnerability, there was no confirmation that hackers actually accessed or exfiltrated any user information. The notification emphasized the potential for exposure rather than confirmed theft. Despite the lack of evidence confirming data theft or public claims by threat actors like ransomware groups regarding stolen Flickr data, the company advised users to exercise caution. Specifically, Flickr warned users to be vigilant against potential phishing emails that might exploit the incident by appearing to originate from or relate to Flickr. The incident was contained through the rapid shutdown of the affected third-party system, but the full scope and confirmation of actual data access remained undetermined at the time of the notification.