Charter Communications hit by network compromise linked to ShinyHunters
Incident
Summary
Hide ▲
Show ▼
Charter Communications confirmed a data breach tied to ShinyHunters extortion, with the company saying it is alerting authorities and that no sensitive personal information or CPNI was exfiltrated in recent activity. ShinyHunters claims the compromise began on April 1 through vishing that hit an employee's Microsoft Entra account and led to exports from Salesforce. Have I Been Pwned later analyzed leaked data and said the incident affected 4.9 million accounts, with exposed records including names, email addresses, phone numbers, and physical addresses.
Cases
Related Happenings
US National Association of Insurance Commissioners (NAIC) hit by network compromise
Incident
H score80
First: 29.06.2026 13:00
Last: 29.06.2026 13:00
Sources 1
About this happening:
**NAIC** disclosed a **security breach** that exposed **US citizens’ credit rating data** and briefly disrupted operations tied to **Oracle PeopleSoft**. The breach was detected o...
US National Association of Insurance Commissioners (NAIC) hit by network compromise
IncidentAbout this happening: **NAIC** disclosed a **security breach** that exposed **US citizens’ credit rating data** and briefly disrupted operations tied to **Oracle PeopleSoft**. The breach was detected o...
ShinyHunters Oracle PeopleSoft data theft and extortion campaign
Campaign
H score60
First: 10.06.2026 21:31
Last: 10.06.2026 21:31
Sources 1
About this happening:
**ShinyHunters**/**UNC6240** used **CVE-2026-35273** in **Oracle PeopleSoft Enterprise PeopleTools** as a **zero-day** to break into exposed systems, steal data, and extort victim...
ShinyHunters Oracle PeopleSoft data theft and extortion campaign
CampaignAbout this happening: **ShinyHunters**/**UNC6240** used **CVE-2026-35273** in **Oracle PeopleSoft Enterprise PeopleTools** as a **zero-day** to break into exposed systems, steal data, and extort victim...
Latest development: 29.06.2026 23:40
Nissan says attackers exploited an Oracle PeopleSoft vulnerability in a ShinyHunters-linked campaign and that the company was specifically targeted, with personal information for current and former employees in the United States, Canada, Mexico, and Brazil potentially exposed. Nissan says the material may include employee contact information, banking information, Social Security numbers, Social Insurance Numbers, National Identification Numbers, financial and tax information, and dependent and beneficiary information, and the company has activated incident response, engaged external cybersecurity experts, secured affected systems, and is working with Oracle.
Charter Communications Salesforce data leak exposes 4.9 million accounts
Data Leak
H score72
First: 29.05.2026 11:29
Last: 29.05.2026 11:29
Sources 1
How related:
"The group later published the data, which exposed 4.9M unique email addresses along with names, phone numbers and physical addresses," Have I Been Pwned said. "A subset of approximately 85k records originating from an internal employee directory also included job titles."
About this happening:
The **public leak** of **Charter Communications** data exposed **4.9 million accounts**, putting names, email addresses, phone numbers, and physical addresses into circulation. Th...
Charter Communications Salesforce data leak exposes 4.9 million accounts
Data LeakHow related: "The group later published the data, which exposed 4.9M unique email addresses along with names, phone numbers and physical addresses," Have I Been Pwned said. "A subset of approximately 85k records originating from an internal employee directory also included job titles."
About this happening: The **public leak** of **Charter Communications** data exposed **4.9 million accounts**, putting names, email addresses, phone numbers, and physical addresses into circulation. Th...
Carnival Corporation customer data leak
Data Leak
H score60
First: 28.05.2026 13:49
Last: 28.05.2026 13:49
Sources 1
About this happening:
**Carnival Corporation** confirmed a **customer data leak** that exposed personal information for **5,995,277 people**, making this a large-scale privacy and identity-risk event....
Carnival Corporation customer data leak
Data LeakAbout this happening: **Carnival Corporation** confirmed a **customer data leak** that exposed personal information for **5,995,277 people**, making this a large-scale privacy and identity-risk event....
Microsoft civil action against Fox Tempest infrastructure takedown
Regulatory/Legal Action
H score24
First: 19.05.2026 18:00
Last: 19.05.2026 18:00
Sources 1
About this happening:
Microsoft filed a **civil action** against **Fox Tempest** in the **US District Court for the Southern District of New York**, securing a **court order** that enabled a broad disr...
Microsoft civil action against Fox Tempest infrastructure takedown
Regulatory/Legal ActionAbout this happening: Microsoft filed a **civil action** against **Fox Tempest** in the **US District Court for the Southern District of New York**, securing a **court order** that enabled a broad disr...
Timeline
-
29.05.2026 11:29 1 articles · 1mo ago
Have I Been Pwned confirms 4.9 million Charter Communications accounts were exposed
Victim Impact UpdateHave I Been Pwned analyzed leaked Charter Communications data and confirmed that the incident affected 4.9 million accounts, with exposed records including names, email addresses, job titles, phone numbers, and physical addresses. The published data also included a subset of about 85,000 records from an internal employee directory.
Show sources
- Charter Communications data breach affects 4.9 million accounts — www.bleepingcomputer.com — 29.05.2026 11:29
-
26.05.2026 22:46 1 articles · 1mo ago
ShinyHunters claims vishing access to Charter Communications on April 1
Untyped PhaseShinyHunters claims it breached Charter Communications on April 1 by using a voice phishing attack to compromise an employee's Microsoft Entra account and then export data from the company's Salesforce instance.
Show sources
- Charter confirms data breach after ShinyHunters extortion threat — www.bleepingcomputer.com — 26.05.2026 22:46
-
26.05.2026 22:46 2 articles · 1mo ago
Charter Communications confirms a data breach and disputes exfiltration claims
Initial DisclosureCharter Communications says it is alerting authorities and following security protocols after the ShinyHunters extortion threat, and states that no sensitive personal information or CPNI data was exfiltrated in recent activity. The attackers claim they stole 40 million records containing customer names, email addresses, addresses, phone numbers, plan information, some CPNI, and customer support ticket data.
Show sources
- Charter confirms data breach after ShinyHunters extortion threat — www.bleepingcomputer.com — 26.05.2026 22:46
- Charter confirms data breach after ShinyHunters extortion threat — www.bleepingcomputer.com — 26.05.2026 22:46