ShinyHunters Breach Affects Checkout.com Legacy Cloud Storage
Summary
Hide ▲
Show ▼
Checkout.com, a global payment processing firm, disclosed a data breach involving a legacy cloud storage system compromised by the ShinyHunters threat group. The breach affected less than 25% of its current merchant base and included data from 2020 and earlier. The company refused to pay the ransom and instead plans to donate the amount to cybersecurity research at Carnegie Mellon University and the University of Oxford Cyber Security Center. The compromised data includes internal operational documents and onboarding materials. ShinyHunters is known for exploiting vulnerabilities and using social engineering tactics to extort large organizations.
Timeline
-
14.11.2025 18:25 1 articles · 23h ago
ShinyHunters Breaches Checkout.com Legacy Cloud Storage
Checkout.com disclosed a data breach involving a legacy cloud storage system compromised by ShinyHunters. The breach affected less than 25% of its current merchant base and included data from 2020 and earlier. The company refused to pay the ransom and instead plans to donate the amount to cybersecurity research at Carnegie Mellon University and the University of Oxford Cyber Security Center.
Show sources
- Checkout.com snubs hackers after data breach, to donate ransom instead — www.bleepingcomputer.com — 14.11.2025 18:25
Information Snippets
-
ShinyHunters breached a legacy third-party cloud file storage system used by Checkout.com in 2020 and prior years.
First reported: 14.11.2025 18:251 source, 1 articleShow sources
- Checkout.com snubs hackers after data breach, to donate ransom instead — www.bleepingcomputer.com — 14.11.2025 18:25
-
The breach affected less than 25% of Checkout.com's current merchant base, including past customers.
First reported: 14.11.2025 18:251 source, 1 articleShow sources
- Checkout.com snubs hackers after data breach, to donate ransom instead — www.bleepingcomputer.com — 14.11.2025 18:25
-
Checkout.com will not pay the ransom and will instead donate the amount to cybersecurity research at Carnegie Mellon University and the University of Oxford Cyber Security Center.
First reported: 14.11.2025 18:251 source, 1 articleShow sources
- Checkout.com snubs hackers after data breach, to donate ransom instead — www.bleepingcomputer.com — 14.11.2025 18:25
-
ShinyHunters has been linked to the exploitation of the Oracle E-Business Suite zero-day (CVE-2025-61884) and Salesforce/Drift attacks.
First reported: 14.11.2025 18:251 source, 1 articleShow sources
- Checkout.com snubs hackers after data breach, to donate ransom instead — www.bleepingcomputer.com — 14.11.2025 18:25