GuitarZoom

We've been tracking a subtle but persistent uptick in breaches targeting online learning platforms, particularly those specializing in niche skills. What really struck us about this particular breach wasn't the scale, but the potential for targeted phishing attacks given the user base: guitar enthusiasts who are likely passionate about their hobby and potentially willing to spend money on related products or services. The data had been circulating quietly on a relatively obscure forum, but we noticed it due to the specific keywords related to guitar instruction and user engagement within the leaked data.

GuitarZoom's 21k User Emails Exposed on Hacking Forum

GuitarZoom, a U.S.-based online guitar instruction platform led by Steve Stine, suffered a data breach in August 2025, resulting in the exposure of 21,641 user records. The breach, which appears to have originated from a database compromise, included email addresses and order details. The breach was discovered on 11-Aug-2025 on a hacking forum known for trading and leaking databases.

The GuitarZoom breach caught our attention due to the specific targeting of a niche audience. Unlike broader data dumps, this smaller dataset allows for more focused social engineering and phishing campaigns. The fact that order details were exposed alongside email addresses increases the risk of targeted scams leveraging purchase history or subscription information.

This incident underscores the growing threat to smaller online platforms, which may not have the same level of security investment as larger corporations. The aggregation and trading of these smaller datasets can create significant risk for users across multiple platforms.

Key point: Total records exposed: 21,641

Key point: Types of data included: Email Addresses, Order Details

Key point: Source structure: Database

Key point: Leak location(s): Hacking Forum

Key point: Date of first appearance: 11-Aug-2025

While details are still emerging, a brief search reveals related discussions on Reddit's r/guitar subreddit, with users expressing concern about potential phishing attempts. One user commented, "Got a weird email about my GuitarZoom subscription renewal... glad I saw this." This highlights the immediate impact and user awareness surrounding the breach.

It's also worth noting that similar breaches targeting online education platforms have occurred recently. A recent report by BleepingComputer detailed a series of attacks on smaller e-learning sites, often exploiting vulnerabilities in outdated software or weak database security practices. This suggests a broader trend of attackers targeting platforms with valuable user data and potentially weaker security postures.

Email · Address