Skip to main content
COSMICBYTEZLABS
NewsSecurityHOWTOsToolsTraining
StudyProjectsNewsletterHire MeAbout
Subscribe

Press Enter to search or Esc to close

News
Security
HOWTOs
Tools
Training
Study
Projects
Newsletter
Hire Me
About
RSS Feed
Reading List
Subscribe

Stay in the Loop

Get the latest security alerts, tutorials, and tech insights delivered to your inbox.

Subscribe NowFree forever. No spam.
COSMICBYTEZLABS

Your trusted source for IT intelligence, cybersecurity insights, and hands-on technical guides.

1941+ Articles
150+ Guides

CONTENT

  • Latest News
  • Security Alerts
  • HOWTOs
  • Checklists
  • Projects
  • Exam Prep

RESOURCES

  • Search
  • Browse Tags
  • Newsletter Archive
  • Reading List
  • RSS Feed

COMPANY

  • About Us
  • Contact
  • Privacy Policy
  • Terms of Service

© 2026 CosmicBytez Labs. All rights reserved.

System Status: Operational
All tags
43 articles

#ShinyHunters

All CosmicBytez Labs articles tagged #ShinyHunters, across news, security advisories, how-to guides, and projects.

  • NewsJul 14, 2026

    Microsoft Maps Three Salesforce Attack Paths Tied to a Year of ShinyHunters Activity

    Microsoft has detailed three distinct attack paths used by actors aligned with ShinyHunters to infiltrate corporate Salesforce environments over the past year — none of which required exploiting any vulnerability in the Salesforce platform itself.

  • NewsJul 6, 2026

    Medtronic Breach Hits 3.8 Million: SSNs and Health Data Exposed

    Medtronic, the world's largest medical device maker, has notified nearly 3.8 million people after a breach linked to ShinyHunters exposed Social Security...

  • NewsJul 2, 2026

    Medtronic Notifies Customers Impacted by ShinyHunters Data Breach

    Healthcare device giant Medtronic is sending breach notification letters to customers after ShinyHunters gained unauthorized access to personal data held...

  • NewsJun 29, 2026

    NAIC Says Only Public Data Stolen in ShinyHunters PeopleSoft Breach

    The National Association of Insurance Commissioners confirms ShinyHunters exploited an Oracle PeopleSoft zero-day but says only publicly available data,...

  • NewsJun 29, 2026

    Nissan Discloses Employee Data Breach Linked to Oracle Zero-Day Attacks

    Nissan warns that current and former employees had data stolen after threat actors exploited an Oracle PeopleSoft zero-day vulnerability tied to the...

  • NewsJun 18, 2026

    Kodak Admits Data Breach After ShinyHunters Hack Claims

    Eastman Kodak has confirmed a cybersecurity incident following claims by the prolific ShinyHunters threat actor, though the company says it believes there...

  • NewsJun 15, 2026

    Council of Europe Investigates ShinyHunters Data Breach Claims

    The Council of Europe, Europe's oldest intergovernmental body, is probing data breach claims made by the ShinyHunters extortion group, which claimed...

  • NewsJun 15, 2026

    Infinite Campus Data Breach Affects 137,000 School Staff Accounts

    The ShinyHunters extortion gang stole personal information from over 137,000 school staff accounts via a Salesforce data theft attack targeting the widely...

  • NewsJun 14, 2026

    Google Confirms ShinyHunters Exploited Oracle PeopleSoft Zero-Day CVE-2026-35273

    Google's Threat Intelligence Group confirmed in-the-wild exploitation of Oracle PeopleSoft zero-day CVE-2026-35273 by ShinyHunters, even as Oracle...

  • NewsJun 13, 2026

    ShinyHunters Uses Oracle Zero-Day to Rampage Higher Education

    The ShinyHunters hacking group exploited a critical Oracle PeopleSoft ERP zero-day (CVE-2026-35273) that disproportionately impacted American...

  • NewsJun 11, 2026

    Oracle Mitigates PeopleSoft Zero-Day Exploited in Data Theft Attacks

    Oracle has issued an emergency mitigation for CVE-2026-35273, a critical unauthenticated RCE flaw in PeopleSoft Suite being actively exploited by the...

  • NewsJun 11, 2026

    ShinyHunters Exploits Oracle PeopleSoft Zero-Day to Breach Universities

    The ShinyHunters group, tracked by Mandiant as UNC6240, has been exploiting CVE-2026-35273 in Oracle PeopleSoft to breach universities and higher...

  • NewsJun 6, 2026

    Hackers Leak DentaQuest Information Impacting 2.6 Million

    The ShinyHunters extortion group has leaked approximately 234 GB of data allegedly stolen from DentaQuest, a major dental benefits administrator serving…

  • NewsMay 29, 2026

    Charter Communications Data Breach Affects 4.9 Million Accounts

    ShinyHunters stole personal information from 4.9 million Charter Communications accounts in an April 2026 hack, confirmed via Have I Been Pwned.

  • NewsMay 28, 2026

    Carnival Cruise Confirms Data Breach Affecting Nearly 6 Million People

    Carnival Corporation, the world's largest cruise operator, confirms a breach affecting nearly 6M people after ShinyHunters' April 2026 extortion claim.

  • NewsMay 26, 2026

    185,000 Likely Impacted by 7-Eleven Data Breach

    ShinyHunters has leaked data allegedly stolen from 7-Eleven containing email addresses, names, physical addresses, and dates of birth for approximately 185,000.

  • NewsMay 26, 2026

    7-Eleven Data Breach Exposes Personal Information of 185,000 People

    The ShinyHunters extortion gang stole the personal information of over 185,000 customers after breaching convenience store giant 7-Eleven in April 2026, with.

  • NewsletterMay 26, 2026

    May 26 Digest: SharePoint RCE, Megalodon CI/CD Blitz

    Microsoft patches a CVSS 8.8 SharePoint RCE; the Megalodon campaign poisons 5,561 GitHub repos in six hours; 7-Eleven's ShinyHunters breach hits 185,000; and a.

  • NewsletterMay 20, 2026

    May 20 Digest: Exchange Zero-Day, Verizon DBIR, GitHub

    A Microsoft Exchange zero-day is being exploited with no patch in sight; Verizon DBIR 2026 marks a landmark shift — vulnerability exploitation now...

  • NewsMay 19, 2026

    7-Eleven Confirms Data Breach Claimed by the ShinyHunters

    Convenience store giant 7-Eleven has confirmed a data breach after the ShinyHunters extortion group publicly claimed responsibility for the attack. The...

  • NewsMay 18, 2026

    7-Eleven Data Breach Confirmed After ShinyHunters Ransom

    7-Eleven has confirmed a data breach after ShinyHunters claimed to have stolen more than 600,000 Salesforce records containing personal information and...

  • NewsMay 18, 2026

    Grafana Confirms Breach After Hackers Claim They Stole Data

    Grafana has confirmed a security breach after the Coinbase Cartel cybercrime group — linked to ShinyHunters, Scattered Spider, and Lapsus$ — claimed to...

  • NewsMay 13, 2026

    Government to Scrutinize Instructure Over Canvas

    The House Committee on Homeland Security has demanded a briefing from Instructure, the company behind the Canvas LMS platform, after a ransomware attack...

  • NewsMay 12, 2026

    Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65 TB Canvas Leak

    Educational technology company Instructure, parent of Canvas LMS, has reached an undisclosed 'agreement' with the ShinyHunters extortion group after a...

  • NewsletterMay 12, 2026

    May 12 Digest: AI-Generated Zero-Day, Shai-Hulud Worm

    Google confirms the first AI-generated zero-day in the wild; TeamPCP's Mini Shai-Hulud worm hits TanStack, Mistral AI, and Guardrails AI; Instructure pays...

  • NewsMay 10, 2026

    Canvas Login Portals Hacked in Mass ShinyHunters Extortion

    ShinyHunters has struck education technology giant Instructure again, exploiting a fresh vulnerability to deface Canvas login portals across hundreds of...

  • NewsApr 28, 2026

    Medtronic Hack Confirmed After ShinyHunters Threatens Data

    Medical device giant Medtronic has confirmed a data breach after the ShinyHunters cybercrime group claimed to have stolen records belonging to 9 million...

  • NewsletterApr 28, 2026

    Apr 28 Digest: Medtronic 9M Breach, GitHub RCE, LiteLLM

    ShinyHunters hits Medtronic and ADT in the same week, exposing millions of records; a critical one-push RCE lands in GitHub; LiteLLM's pre-auth SQL...

  • NewsApr 27, 2026

    Home Security Giant ADT Data Breach Affects 5.5 Million

    The ShinyHunters extortion group stole the personal information of 5.5 million individuals after breaching the systems of home security giant ADT earlier...

  • NewsApr 24, 2026

    ADT Confirms Data Breach After ShinyHunters Leak Threat

    Home security giant ADT has confirmed a data breach after the ShinyHunters extortion group threatened to publish stolen data unless a ransom is paid,...

  • NewsApr 20, 2026

    Next.js Creator Vercel Hacked

    Vercel confirmed suffering a breach after a hacker claiming to be part of ShinyHunters offered to sell stolen data for $2 million, affecting the company...

  • NewsApr 18, 2026

    In Other News: Satellite Cybersecurity Act, $90K Chrome

    This week's cybersecurity roundup covers the proposed Satellite Cybersecurity Act, a $90,000 Chrome heap overflow bug, a 16-year-old hacker arrest,...

  • NewsApr 10, 2026

    Hims & Hers Breach Exposes the Most Sensitive Kinds of Patient PHI

    ShinyHunters exploited compromised Okta SSO credentials to breach the Hims & Hers Zendesk customer support platform, exposing treatment category data for...

  • NewsApr 3, 2026

    Blast Radius of TeamPCP Attacks Expands Amid Hacker

    As organizations disclose breaches tied to TeamPCP's supply chain attacks, ShinyHunters and Lapsus$ are taking credit and creating a murky attribution...

  • NewsMar 30, 2026

    European Commission Confirms Data Breach After Europa.eu

    The European Commission has confirmed a data breach after its Europa.eu web platform was compromised in an attack claimed by the ShinyHunters extortion gang.

  • NewsMar 29, 2026

    ShinyHunters Breach Infinite Campus — K-12 Platform Serving

    ShinyHunters claimed a breach of Infinite Campus on March 22, 2026, after gaining access through an employee's Salesforce account. The K-12 student...

  • NewsMar 13, 2026

    Telus Digital Confirms Massive Breach After ShinyHunters

    Canadian telecom giant Telus Digital has confirmed a security incident after the ShinyHunters hacking group claimed to have stolen nearly 1 petabyte of...

  • NewsMar 9, 2026

    ShinyHunters Claims Mass Data Theft From 400 Firms via Salesforce Aura

    Cybercrime group ShinyHunters claims to have exploited misconfigured Salesforce Experience Cloud instances to steal CRM data from approximately 400...

  • NewsFeb 20, 2026

    Fintech Giant Figure Technology Confirms Breach: Nearly 1

    Blockchain-based lending platform Figure Technology Solutions confirms a data breach affecting nearly 1 million customers after ShinyHunters exploited an...

  • NewsFeb 20, 2026

    ShinyHunters Dumps Harvard and UPenn Data After Ransom

    The ShinyHunters cybercriminal syndicate has published stolen data from Harvard University and the University of Pennsylvania after both institutions...

  • NewsFeb 17, 2026

    Scattered Lapsus$ ShinyHunters Alliance Hits 100+

    The SLSH alliance combining Scattered Spider, Lapsus$, and ShinyHunters has attacked over 100 organizations since the start of 2026, breaching 60 million...

  • NewsFeb 16, 2026

    ShinyHunters Dumps 600K+ Canada Goose Customer Records Online

    Data extortion group ShinyHunters posts 1.67 GB of alleged Canada Goose customer data including names, emails, addresses, and partial payment card...

  • NewsFeb 5, 2026

    ShinyHunters Dumps 5.1 Million Panera Bread Customer

    The ShinyHunters hacking group published a 760 MB archive of 5.1 million Panera Bread customer records on the dark web after the company refused to pay a...