Find notable cyber news and cases, enriched with sources, timelines, and signals.

Charter Communications hit by network compromise linked to ShinyHunters

Incident
First reported
Last updated
Happening score
H score 70
1 unique sources, 2 articles

Summary

Hide ▲

Charter Communications confirmed a data breach tied to ShinyHunters extortion, with the company saying it is alerting authorities and that no sensitive personal information or CPNI was exfiltrated in recent activity. ShinyHunters claims the compromise began on April 1 through vishing that hit an employee's Microsoft Entra account and led to exports from Salesforce. Have I Been Pwned later analyzed leaked data and said the incident affected 4.9 million accounts, with exposed records including names, email addresses, phone numbers, and physical addresses.

Cases

Related Happenings

US National Association of Insurance Commissioners (NAIC) hit by network compromise

Incident
H score80 First: 29.06.2026 13:00 Last: 29.06.2026 13:00 Sources 1

About this happening: **NAIC** disclosed a **security breach** that exposed **US citizens’ credit rating data** and briefly disrupted operations tied to **Oracle PeopleSoft**. The breach was detected o...

ShinyHunters Oracle PeopleSoft data theft and extortion campaign

Campaign
H score60 First: 10.06.2026 21:31 Last: 10.06.2026 21:31 Sources 1

About this happening: **ShinyHunters**/**UNC6240** used **CVE-2026-35273** in **Oracle PeopleSoft Enterprise PeopleTools** as a **zero-day** to break into exposed systems, steal data, and extort victim...

Latest development: 29.06.2026 23:40

Nissan says attackers exploited an Oracle PeopleSoft vulnerability in a ShinyHunters-linked campaign and that the company was specifically targeted, with personal information for current and former employees in the United States, Canada, Mexico, and Brazil potentially exposed. Nissan says the material may include employee contact information, banking information, Social Security numbers, Social Insurance Numbers, National Identification Numbers, financial and tax information, and dependent and beneficiary information, and the company has activated incident response, engaged external cybersecurity experts, secured affected systems, and is working with Oracle.

Charter Communications Salesforce data leak exposes 4.9 million accounts

Data Leak
H score72 First: 29.05.2026 11:29 Last: 29.05.2026 11:29 Sources 1

How related: "The group later published the data, which exposed 4.9M unique email addresses along with names, phone numbers and physical addresses," Have I Been Pwned said. "A subset of approximately 85k records originating from an internal employee directory also included job titles."

About this happening: The **public leak** of **Charter Communications** data exposed **4.9 million accounts**, putting names, email addresses, phone numbers, and physical addresses into circulation. Th...

Carnival Corporation customer data leak

Data Leak
H score60 First: 28.05.2026 13:49 Last: 28.05.2026 13:49 Sources 1

About this happening: **Carnival Corporation** confirmed a **customer data leak** that exposed personal information for **5,995,277 people**, making this a large-scale privacy and identity-risk event....

Microsoft civil action against Fox Tempest infrastructure takedown

Regulatory/Legal Action
H score24 First: 19.05.2026 18:00 Last: 19.05.2026 18:00 Sources 1

About this happening: Microsoft filed a **civil action** against **Fox Tempest** in the **US District Court for the Southern District of New York**, securing a **court order** that enabled a broad disr...

Timeline

  1. 29.05.2026 11:29 1 articles · 1mo ago

    Have I Been Pwned confirms 4.9 million Charter Communications accounts were exposed

    Victim Impact Update

    Have I Been Pwned analyzed leaked Charter Communications data and confirmed that the incident affected 4.9 million accounts, with exposed records including names, email addresses, job titles, phone numbers, and physical addresses. The published data also included a subset of about 85,000 records from an internal employee directory.

    Show sources
  2. 26.05.2026 22:46 1 articles · 1mo ago

    ShinyHunters claims vishing access to Charter Communications on April 1

    Untyped Phase

    ShinyHunters claims it breached Charter Communications on April 1 by using a voice phishing attack to compromise an employee's Microsoft Entra account and then export data from the company's Salesforce instance.

    Show sources
  3. 26.05.2026 22:46 2 articles · 1mo ago

    Charter Communications confirms a data breach and disputes exfiltration claims

    Initial Disclosure

    Charter Communications says it is alerting authorities and following security protocols after the ShinyHunters extortion threat, and states that no sensitive personal information or CPNI data was exfiltrated in recent activity. The attackers claim they stole 40 million records containing customer names, email addresses, addresses, phone numbers, plan information, some CPNI, and customer support ticket data.

    Show sources