Telus Digital, a Canadian telecom BPO, confirmed a major data breach by the ShinyHunters group, who allegedly stole nearly a…
Read More »ShinyHunters
Entity category: organization
The ShinyHunters group is attacking Salesforce Experience Cloud by weaponizing a legitimate security tool, Aura Inspector, to exploit misconfigured guest…
Read More »
Cybercriminals, notably the ShinyHunters group, are exploiting misconfigured guest user permissions in Salesforce's Experience Cloud to access sensitive data, though…
Read More »
Salesforce is urging customers to immediately review security settings due to a widespread data theft campaign by the ShinyHunters group,…
Read More »
The Scattered Lapsus$ Hunters (SLH) cybercrime collective is now actively recruiting women for voice-phishing (vishing) operations, offering high upfront payments…
Read More »
Wynn Resorts suffered a data breach by the ShinyHunters hacking group, compromising employee data including Social Security numbers, but guest…
Read More »
The ShinyHunters extortion gang breached Dutch telecom provider Odido, potentially exposing millions of customers' sensitive personal data like names, addresses,…
Read More »
Optimizely, a major ad-tech firm, suffered a security breach after a sophisticated voice-phishing attack on February 11th, which allowed intruders…
Read More »
A new wave of attacks combines device code phishing with voice phishing (vishing) to compromise Microsoft Entra accounts, exploiting the…
Read More »
A major data breach at Figure Technology Solutions, caused by a sophisticated social engineering attack, compromised the personal information of…
Read More »
A data leak exposed over 600,000 Canada Goose customer records, but the company states its own systems were not breached…
Read More »
South Korea's Personal Information Protection Commission (PIPC) has fined Louis Vuitton, Christian Dior, and Tiffany a total of $25 million…
Read More »
Figure Technology suffered a data breach due to a social engineering attack, where hackers accessed sensitive customer files, and the…
Read More »
A sophisticated supply chain attack on Notepad++ by a Chinese state-sponsored group and the exploitation of a Microsoft Office flaw…
Read More »
A sophisticated social engineering campaign is bypassing multi-factor authentication (MFA) using synchronized voice and email phishing attacks, successfully targeting major…
Read More »
The ShinyHunters group uses sophisticated voice phishing (vishing) to steal employee credentials and bypass multi-factor authentication by impersonating IT support…
Read More »
A major data breach at Match Group, parent company of Hinge, Tinder, and OkCupid, was caused by a phishing attack…
Read More »
A late 2025 breach at SoundCloud compromised personal data from nearly 30 million accounts, primarily exposing email addresses and public…
Read More »
The ShinyHunters gang is conducting a sophisticated voice phishing campaign, using social engineering to steal credentials and MFA codes by…
Read More »
Grubhub has confirmed a data breach, contained the incident, and is working with experts, but has not disclosed specifics about…
Read More »