Incident was detected and investigation concluded within six months.
U.S radio network and podcast producer iHeartMedia suffered a data breach in December 2024 that exposed sensitive personal information, including Social Security and passport numbers.
According to Cybernews, the breach occurred between December 24th and 27th, and affected files that had been stored on systems at a limited number of local stations.
The company detected the incident and resolved the breach within a week, and concluded its investigation on April 11th, 2025. While iHeartMedia has not disclosed the total number of affected individuals, all compromised files included names, with some also containing financial and government-issued identification details.
Written by
Dan Raywood is a B2B journalist with 25 years of experience, including covering cybersecurity for the past 17 years. He has extensively covered topics from Advanced Persistent Threats and nation-state hackers to major data breaches and regulatory changes.
He has spoken at events including 44CON, Infosecurity Europe, RANT Forum, BSides Scotland, Steelcon and the National Cyber Security Show, and served as editor of SC Media UK, Infosecurity Magazine and IT Security Guru. He was also an analyst with 451 Research and a product marketing lead at Tenable.
