
Hack revealed AI music platform Suno scraped millions of songs from YouTube, Deezer & more
Apparently, the popular AI music platform Suno was hacked in November 2025 through a supply chain attack that exposed an employee’s credentials, according to a report from 404 Media. The hacker allegedly used them to access internal source code and information about Suno’s training data collection methods. The code reportedly showed that Suno scraped decades of audio from YouTube Music, Deezer, Genius, as well as stock music libraries from sites like Jamendo, Freesound and podcast RSS feeds.
The findings provide more detail about the external content potentially used to train Suno’s AI music models. Suno previously acknowledged training on publicly available music files from the open internet and argues that this use is protected under fair use. Major record labels suing the company dispute that claim, alleging Suno used copyrighted material without permission and may have violated the Digital Millennium Copyright Act by bypassing YouTube’s anti scraping protections.
The breach also reportedly exposed customer information, including email addresses, phone numbers, and partial credit card details. Suno did not notify users about the incident and described it only as a limited security issue that was quickly contained.


