David HollingworthThis WA-based co-op is just one of about four local hacks and that I and my colleague Daniel Croft are looking at this week - we're only a month-and-a-half into 2026 and already the big ransomware players are getting very active down under.
The New Oil#CanadaGoose investigating as hackers leak 600K customer records
Canada Goose investigating as hackers leak 600K customer records
ShinyHunters, a well-known data extortion group, claims to have stolen more than 600,000 Canada Goose customer records containing personal and payment-related data. Canada Goose told BleepingComputer the dataset appears to relate to past customer transactions and that it has not found evidence of a breach of its own systems.
hackmac5,1 Millionen Datensätze. Ein Vishing-Anruf. Kein Lösegeld gezahlt – Daten trotzdem im Netz. Die US-Restaurantkette Panera Bread wurde Opfer eines Cyberangriffs der berüchtigten ShinyHunters-Gruppe. Der Angriffsvektor? Kein hochkomplexer Zero-Day-Exploit, sondern Voice Phishing – ein manipulativer Telefonanruf, über den die Angreifer Zugang zu einem Microsoft Entra Single Sign-On-Code erhielten. #CyberSecurity #DataBreach #Vishing #SocialEngineering #shinyhunters #panerabread
Yazoul Alerts🚨 DATA BREACH ALERT
SoundCloud - 29.8M accounts exposed
Compromised data:
Email Addresses, Usernames, Names
Check if you're affected and what to do:
https://breaches.yazoul.net/breach/soundcloud
CRITICAL: SoundCloud | Yazoul Security
In December 2025, SoundCloud announced it had discovered unauthorised activity on its platform . The incident allowed an attacker to map publicly available SoundCloud profile data to email addresses for approximately 20% of its users. The impacted data included 30M unique email addresses, names, use...
Andy Thompson (rainmaker)📬 Hackers Are Literally Mailing You Scam Letters 📬
Threat actors are sending physical letters through postal mail pretending to be from Trezor and Ledger, manufacturers of cryptocurrency hardware wallets. The letters use official-looking branding and urgent language to trick recipients into revealing their wallet recovery phrases on fake websites. The scam represents a sophisticated blend of physical and digital social engineering.
Sources:
• https://www.bleepingcomputer.com/news/security/snail-mail-letters-target-trezor-and-ledger-users-in-crypto-theft-attacks/
• https://www.cryptotimes.io/2026/02/16/ledger-and-trezor-users-are-being-tricked-into-giving-away-millions/
• https://crypto.news/crypto-hackers-target-trezor-ledger-users-in-theft/
• https://phemex.com/news/article/scammers-target-ledger-and-trezor-users-with-phishing-letters-60803
#Cryptocurrency #Trezor #Ledger #PhishingScam #HardwareWallet
----------
🤖 Trusted AI Tool Weaponized to Hack Macs 🤖
Threat actors are abusing Claude AI's Artifacts feature and Google Ads in ClickFix campaigns that deliver infostealer malware to macOS users. The attacks target users searching for specific technical queries, showing malicious Google Ads that lead to Claude-generated artifacts containing malware. This represents a concerning abuse of AI-generated content for malware distribution.
Sources:
• https://www.bleepingcomputer.com/news/security/claude-llm-artifacts-abused-to-push-mac-infostealers-in-clickfix-attack/
• https://cyberpress.org/malicious-campaign-uses-claude-artifacts-and-google-ads/
• https://www.rescana.com/post/claude-llm-artifacts-exploited-to-distribute-mac-infostealer-malware-via-clickfix-attack-chain-targe
• https://www.news4hackers.com/clickfix-attack-exploits-claude-llm-artifacts-to-distribute-mac-infostealers/
#Claude #MacMalware #Infostealer #GoogleAds #AI
----------
❄️ ShinyHunters Strikes Again: 600K Records Leaked ❄️
The notorious ShinyHunters data extortion group claims to have stolen more than 600,000 Canada Goose customer records containing personal and payment-related information. Canada Goose told BleepingComputer the dataset appears to relate to past customer transactions and investigators have not found evidence of a breach of Canada Goose's own systems. The company is investigating whether the data came from a third-party vendor or partner.
Sources:
• https://www.bleepingcomputer.com/news/security/canada-goose-investigating-as-hackers-leak-600k-customer-records/
• https://securityaffairs.com/188046/data-breach/shinyhunters-leaked-600k-canada-goose-customer-records-but-the-firm-denies-it-was-breached.html
• https://www.techradar.com/pro/security/canada-goose-confirms-data-leak-around-600-000-customers-thought-to-be-affected
• https://vpncentral.com/canada-goose-600k-customer-records-leaked-shinyhunters-claims-third-party-breach/
#DataBreach #CanadaGoose #ShinyHunters #CustomerData #CyberSecurity
DarkWebSonar🇺🇸 Kirigaya claims data breach on United States' Suplemedics. Containing 5,818,903 GPS tracking records. #DataBreach #Healthcare #USA #ThreatIntel
BeyondMachines 
Canada Goose Investigates Leak of 600,000 Customer Records Linked to Third-Party Breach
Canada Goose is investigating an alleged leak of 600,000 customer records published by the ShinyHunters extortion group, which supposedly originated from a third-party payment processor breach in August 2025.
****
#cybersecurity #infosec #incident #databreach
https://beyondmachines.net/event_details/canada-goose-investigates-leak-of-600000-customer-records-linked-to-third-party-breach-e-8-c-4-o/gD2P6Ple2L
Canada Goose Investigates Leak of 600,000 Customer Records Linked to Third-Party Breach
Canada Goose is investigating an alleged leak of 600,000 customer records published by the ShinyHunters extortion group, which supposedly originated from a third-party payment processor breach in August 2025.
gtbarryDutch phone giant Odido says millions of customers affected by data breach
Dutch phone company Odido has confirmed a data breach. The breach affects more than 6.2 million customers, or about a third of the country’s population.
#Odido #Netherlands #telco #databreach #security #cybersecurity #hackers #hacking #hacked
Dutch phone giant Odido says millions of customers affected by data breach | TechCrunch
The Dutch phone giant Odido is the latest phone and internet company to be hacked in recent months, as governments and financially motivated hackers continue to steal highly confidential information about phone customers.
Nistal TtCybersecurity Deep Dive: What Is a Worm Attack?
Indian #pharmacy chain giant exposed customer data and internal systems
#India #DavaIndia #Zota #healthcare #privacy #cybersecurity #DataBreach
