Leaks Reveal Suno Fed Thousands of Hours of Deezer, YouTube and Pond5 Data Into Its AI
A hacker breached Suno in 2025 and leaked source code showing the platform scraped over 113,000 hours from YouTube Music, 62,000 from stock library Pond5, and 12,000 from Deezer, among other sources. The same intrusion reached customer emails, phone numbers, and Stripe pa…
Intelligence analysis by Llama

A hacker broke into AI music platform Suno and leaked source code that documents the company's training data sources. The breach included customer data and intellectual property.
Imagine you have a super smart music player that can learn from all the music you listen to. But what if someone broke into the music player's code and found out that it was learning from music that wasn't even yours? That's kind of what happened with a company called Suno. Someone broke into their code and found out that they were learning from a huge amount of music from YouTube, a music library called Pond5, and another music service called Deezer. This raises concerns about how Suno is handling people's music and personal data.
Analysis
A $60B Vote of Confidence
The leaked source code reveals that Suno's training data includes over 113,000 hours of music from YouTube Music, 62,000 hours from stock library Pond5, and 12,000 hours from Deezer. This extensive data collection raises concerns about the company's handling of customer data and intellectual property. The breach also included customer emails, phone numbers, and Stripe payment data for hundreds of thousands of users.
Why Cursor?
The breach highlights the importance of robust security measures in the AI industry. Suno's failure to protect its source code and customer data raises questions about the company's commitment to user privacy and security. The incident also underscores the need for greater transparency in data collection and usage practices.
The Road Ahead
The leaked source code has significant implications for Suno's business model and reputation. The company must take immediate action to address the breach and reassure its users about the security of their data. This may involve implementing new security measures, providing transparency about data collection and usage practices, and taking steps to mitigate the impact of the breach on its users.
Key points
- A hacker breached Suno in 2025 and leaked source code showing the platform scraped over 113,000 hours from YouTube Music, 62,000 from stock library Pond5, and 12,000 from Deezer, among other sources.
- The same intrusion reached customer emails, phone numbers, and Stripe payment data for hundreds of thousands of users.
- Suno's own California compliance disclosure had already acknowledged that its training data may include music 'subject to intellectual property protection'.
If Suno takes immediate action to address the breach and reassure its users about the security of their data, the company may be able to recover from this incident and maintain its reputation in the AI industry.
The breach has significant implications for Suno's business model and reputation, and the company may struggle to recover from this incident if it fails to take adequate action to address the breach and reassure its users.



