11 articles tagged with "ShinyHunters".
The ShinyHunters cybercriminal group published stolen data from Harvard University and the University of Pennsylvania after ransom demands went unpaid, exposing over 2 million alumni, donor, and student records.
ShinyHunters breached Panera Bread via Microsoft Entra SSO vishing attack, leaking 5.1 million customer records including names, emails, phone numbers, and addresses after the company refused extortion demands.
ShinyHunters stole 10 million records from Match Group dating platforms via a vishing attack that compromised Okta SSO credentials. The breach exposed user advertising IDs, IP addresses, and dating profile content.
ShinyHunters breached Match Group via a third-party analytics provider, exposing 10 million records from Tinder, Hinge, OkCupid, and Match.com.
ShinyHunters breached SoundCloud's internal systems and leaked 29.8 million user records after the company refused extortion demands, exposing email addresses linked to public profile data.
ShinyHunters breached Crunchbase via Okta voice phishing, exfiltrating over 2 million records. The attack was part of a broader campaign targeting approximately 100 organizations using real-time SSO phishing kits.
Scattered Spider and ShinyHunters breached Allianz Life's Salesforce CRM through OAuth app social engineering, exposing SSNs and personal data. The attack is part of a larger campaign targeting Google, Qantas, and LVMH.
A former ShinyHunters member leaked the BreachForums user database with 324,000 accounts, including usernames, emails, password hashes, and 70,000 IP addresses. Law enforcement interest is likely.
Threat actors claiming to have breached cybersecurity firm Resecurity were caught in a honeypot containing 218,000+ synthetic records. The intelligence gathered led to a law enforcement subpoena.
Hackers stole personal and payment data of approximately 560 million Ticketmaster customers from a Snowflake cloud environment, in one of the largest consumer data breaches of 2024.
Threat actors from the Scattered Spider and ShinyHunters groups breached Allianz Life's Salesforce CRM through social engineering, exposing personal data including Social Security numbers of 1.5 million customers and financial professionals.