ShinyHunters data-leak site exposing stolen attack data
Data Leak
Summary
Hide ▲
Show ▼
The ShinyHunters extortion gang launched a data-leak site, beginning to publish data tied to the theft campaign and raising the exposure risk for victims.
Related Happenings
7-Eleven hit by network compromise
Incident
First: 19.05.2026 17:16
Last: 19.05.2026 17:16
Sources 1
About this happening:
**7-Eleven** is a **victim-focused breach incident** in which an **unauthorized third party** accessed systems used to store **franchisee documents** on **April 8, 2026**, trigger...
7-Eleven hit by network compromise
IncidentAbout this happening: **7-Eleven** is a **victim-focused breach incident** in which an **unauthorized third party** accessed systems used to store **franchisee documents** on **April 8, 2026**, trigger...
CoinbaseCartel escalates extortion activity with more than 100 victims
Threat Actor Meta
First: 18.05.2026 16:46
Last: 18.05.2026 16:46
Sources 1
About this happening:
**CoinbaseCartel** has expanded its extortion operation, publicly listing **more than 100 victims** on a **data leak portal**. The growth signals a more scalable criminal ecosyste...
CoinbaseCartel escalates extortion activity with more than 100 victims
Threat Actor MetaAbout this happening: **CoinbaseCartel** has expanded its extortion operation, publicly listing **more than 100 victims** on a **data leak portal**. The growth signals a more scalable criminal ecosyste...
7-Eleven franchisee-docs and Salesforce data leak
Data Leak
First: 18.05.2026 14:25
Last: 18.05.2026 14:25
Sources 1
About this happening:
**7-Eleven** confirmed a **April 8, 2026** intrusion into systems used to store **franchisee documents**, and **ShinyHunters** later claimed the theft of **more than 600,000 Sales...
7-Eleven franchisee-docs and Salesforce data leak
Data LeakAbout this happening: **7-Eleven** confirmed a **April 8, 2026** intrusion into systems used to store **franchisee documents**, and **ShinyHunters** later claimed the theft of **more than 600,000 Sales...
Latest development: 26.05.2026 10:01
Have I Been Pwned analyzed the leaked 7-Eleven data and estimated that the breach exposed personal information for 185,300 people, including names, dates of birth, unique email addresses, phone numbers, and physical addresses. The exposed archive was tied to ShinyHunters' extortion campaign against 7-Eleven and followed the group's leak-site posting after ransom demands were not met.
ShinyHunters school-by-school extortion campaign targeting Canvas institutions
Campaign
First: 11.05.2026 13:05
Last: 11.05.2026 13:05
Sources 1
About this happening:
ShinyHunters intensified a **school-by-school extortion campaign** against **Canvas-related institutions**, increasing pressure on schools and universities as the group threatened...
ShinyHunters school-by-school extortion campaign targeting Canvas institutions
CampaignAbout this happening: ShinyHunters intensified a **school-by-school extortion campaign** against **Canvas-related institutions**, increasing pressure on schools and universities as the group threatened...
Zara customer data leak exposing 197,400 people
Data Leak
First: 08.05.2026 13:42
Last: 08.05.2026 13:42
Sources 1
About this happening:
The **Zara** customer-data leak now exposes **197,400 people**, creating privacy and phishing risk across multiple markets. The exposed records include **unique email addresses**,...
Zara customer data leak exposing 197,400 people
Data LeakAbout this happening: The **Zara** customer-data leak now exposes **197,400 people**, creating privacy and phishing risk across multiple markets. The exposed records include **unique email addresses**,...
Timeline
-
31.01.2026 17:02 8 articles · 3mo ago
ShinyHunters launches data-leak site
Initial DisclosureShinyHunters launched a data-leak site and began leaking data associated with the SaaS data-theft campaign, publicly exposing victims of these attacks after the campaign details became known.
Show sources
- Mandiant details how ShinyHunters abuse SSO to steal cloud data — www.bleepingcomputer.com — 31.01.2026 17:02
- Mandiant details how ShinyHunters abuse SSO to steal cloud data — www.bleepingcomputer.com — 31.01.2026 17:02
- Data breach at fintech firm Figure affects nearly 1 million accounts — www.bleepingcomputer.com — 18.02.2026 16:01
- Wynn Resorts confirms employee data breach after extortion threat — www.bleepingcomputer.com — 24.02.2026 23:51
- Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats — www.securityweek.com — 04.05.2026 10:02
- Ransomware Group “Trinity of Chaos” Launches Data Leak Site — www.infosecurity-magazine.com — 06.10.2025 18:00
- ShinyHunters Wage Broad Corporate Extortion Spree — krebsonsecurity.com — 08.10.2025 01:45
- Charter confirms data breach after ShinyHunters extortion threat — www.bleepingcomputer.com — 26.05.2026 22:46