Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Senior executive at major global stock exchange hit by data theft breach

Incident
First reported
Last updated
Happening score
H score 7
1 unique sources, 1 articles

Summary

Hide ▲

A senior executive at a major global stock exchange suffered an email account compromise that enabled months of unauthorized mailbox access and data theft. The intrusion began in October 2025 and persisted until March 2026, creating a long dwell time consistent with espionage. Attackers used the compromised Outlook mailbox to collect information and exfiltrate data in small batches. The prolonged access increases the risk of sensitive negotiations, internal deliberations, and market-moving details being exposed.

Related Happenings

ShinyHunters vishing campaign targeting SSO accounts

Campaign
First: 02.02.2026 15:46 Last: 02.02.2026 15:46 Sources 1

About this happening: The **ShinyHunters** group ran a **voice phishing** campaign against **single sign-on (SSO) accounts** at **Okta, Microsoft, and Google**, widening risk across **more than 100 hig...

Latest development: 26.05.2026 22:46

ShinyHunters claims it breached Charter Communications on April 1 by vishing an employee's Microsoft Entra account, then used that access to export millions of consumer and business customer records from the company's Salesforce instance; Charter says no sensitive personal information or CPNI was exfiltrated.

Open Happening

Multi-stage AitM phishing and BEC campaign against energy-sector organizations

Campaign
First: 23.01.2026 10:25 Last: 23.01.2026 10:25 Sources 1

About this happening: A **multi-stage AitM phishing** and **BEC** operation is targeting **multiple energy-sector organizations**, creating immediate risk of credential theft and unauthorized mailbox a...

Open Happening

Tycoon 2FA internal-domain phishing campaign abusing email routing

Campaign
First: 07.01.2026 11:42 Last: 07.01.2026 11:42 Sources 1

About this happening: An **active Tycoon 2FA phishing campaign** is abusing **misconfigured email routing** and weak **domain spoofing protections** to make messages look like they came from trusted in...

Open Happening

Jingle Thief cloud phishing and smishing gift card fraud campaign

Campaign
First: 23.10.2025 10:52 Last: 23.10.2025 10:52 Sources 1

About this happening: The **Jingle Thief** campaign is actively using **phishing and smishing** to steal cloud credentials and drive **unauthorized gift card fraud** against **retail and consumer servi...

Open Happening

Timeline

  1. 03.06.2026 15:46 1 articles · 6h ago

    Malware runs on a senior executive's compromised host

    Exploitation Observed

    Malware was already running on the compromised host used by a senior executive at a major global stock exchange on October 10, 2025, disguised as Adobe and OneDrive applications while the initial access vector remained unknown.

    Show sources
    Open in new tab
  2. 03.06.2026 15:46 1 articles · 6h ago

    Attackers establish C&C and exfiltrate data from an Outlook mailbox

    Campaign Scope Update

    On November 12, 2025, the attacker established command-and-control (C&C) channels, began collecting and exfiltrating data from the senior executive's Outlook mailbox, and moved files through Dropbox and OneDrive in small batches while repeatedly re-registering tasks disguised as Adobe, Lenovo, and OneDrive system services.

    Show sources
    Open in new tab
  3. 03.06.2026 15:46 2 articles · 6h ago

    Senior executive's Outlook mailbox compromise at a major global stock exchange is disclosed

    Initial Disclosure

    On June 3, 2026, Broadcom's Symantec and Carbon Black disclosed the espionage-focused compromise of a senior executive's Outlook mailbox at a major global stock exchange, said the threat actor had retained access from October 2025 until March 2026, and released indicators of compromise (IoCs) to help other organizations detect similar activity.

    Show sources
    Open in new tab