Hackers leak moderator data and forum source code.
The imageboard 4chan has suffered a massive cyberattack. The breach has been claimed by members of the anonymous board Soyjak.party, also known as The Party.
The hackers announced that the operation, dubbed "soyclipse", had been in planning for over a year and was executed on April 14, 2025. Leaked materials include screenshots of admin panels, source code, and user-ban templates — tools accessible only to 4chan moderators. A list of alleged moderators and “janitors” (limited-access helpers) was also published.
TechCrunch reached out to several individuals whose information was leaked. One janitor confirmed the authenticity of the data, stating: "I have no reason to believe it’s fake." He also speculated that the attackers may have gained access to 4chan Pass subscriber information — a paid tier that provides access to special features and hidden boards.
Screenshots were posted in a thread on Soyjak.party, accompanied by a message from a user named Chud:
"Tonight is special. A hacker who had access to 4cuck for over a year has executed the soyclipse."
According to the attackers, the 4chan administration shut down the servers in an attempt to contain the breach. However, unconfirmed reports suggest the servers were fully compromised.
The likely cause of the breach? A severely outdated version of PHP from 2016, known to have multiple vulnerabilities — which the hackers may have exploited.
Launched in 2003 by Christopher Poole (aka moot), 4chan has long been a controversial hub on the internet. Over the years, it has been linked to high-profile data leaks affecting companies like Microsoft, Intel, Twitch, and Disney. It is also the birthplace of iconic memes like Pepe the Frog and Wojak, as well as the QAnon conspiracy movement, known for its support of Donald Trump.
