datarazimedia1h ago

17 June 2026: ShinyHunters exploited an unauthenticated zero-day in Oracle PeopleSoft (CVSS 9.8) to breach 100+ organisations, 68% of them US universities.

Nottingham: ~455,000 student records dumped. Council of Europe (46 member states) confirmed breach — ~297 GB / 429,000 files including HR, payroll, salary, banking, tax data.

Oracle didn't publicly acknowledge in-the-wild exploitation until the patch landed 17 June.

#Oracle #ShinyHunters

https://youtu.be/R4dNyBQ6nEY

ShinyHunters exploited Oracle zero-day, stealing university data worldwide

YouTube
RedPacket Security4h ago

[SHINYHUNTERS] - Ransomware Victim: Amazon owned OneMedical[.]com - https://www.redpacketsecurity.com/shinyhunters-ransomware-victim-amazon-owned-onemedical-com/

#shinyhunters #dark_web #data_breach #OSINT #ransomware #threatintel #tor

[SHINYHUNTERS] - Ransomware Victim: Amazon owned OneMedical[.]com - RedPacket Security

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating

RedPacket Security
RedPacket Security4h ago

[SHINYHUNTERS] - Ransomware Victim: NAIC[.]org - https://www.redpacketsecurity.com/shinyhunters-ransomware-victim-naic-org/

#shinyhunters #dark_web #data_breach #OSINT #ransomware #threatintel #tor

[SHINYHUNTERS] - Ransomware Victim: NAIC[.]org - RedPacket Security

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating

RedPacket Security
RansomLook5h ago
New post from #Shinyhunters : Amazon Owned Onemedical.Com
More at : https://www.ransomlook.io/group/Shinyhunters #Ransomware
Shinyhunters · RansomLook

Open ransomware intelligence — groups, markets, actors, crypto, stats.

RansomLook5h ago
New post from #Shinyhunters : Naic.Org
More at : https://www.ransomlook.io/group/Shinyhunters #Ransomware
Shinyhunters · RansomLook

Open ransomware intelligence — groups, markets, actors, crypto, stats.

Analyst20716h ago

Kodak Breach Exposes 2.2M Records to ShinyHunters Threat Group

Kodak has confirmed a major data breach, with the ShinyHunters threat group claiming to have stolen 2.2 million records, including sensitive customer information. The company is working closely with law enforcement and cybersecurity experts to address the breach.

https://osintsights.com/kodak-breach-exposes-22m-records-to-shinyhunters-threat-group?utm_source=mastodon&utm_medium=social

#DataBreach #Shinyhunters #Kodak #EmergingThreats #Ransomware

Kodak Breach Exposes 2.2M Records to ShinyHunters Threat Group

Learn how the ShinyHunters Group's data breach exposed 2.2M Kodak records and what it means for your business security - read the full impact now.

OSINTSights
CyberVeille.ch16h ago

📢 Berkadia victime d'une extorsion ShinyHunters : 300 000+ emails exposés via Salesforce
📝 ## 🏢 Contexte

Source : HaveIBeenPwned (haveibeenpwned.com/Breach/Berkadia), publié le 15 juin 2026.
📖 cyberveille : https://cyberveille.ch/posts/2026-06-17-berkadia-victime-d-une-extorsion-shinyhunters-300-000-emails-exposes-via-salesforce/
🌐 source : https://haveibeenpwned.com/Breach/Berkadia
#Salesforce #ShinyHunters #Cyberveille

Berkadia victime d'une extorsion ShinyHunters : 300 000+ emails exposés via Salesforce

🏢 Contexte Source : HaveIBeenPwned (haveibeenpwned.com/Breach/Berkadia), publié le 15 juin 2026. Berkadia est une société américaine spécialisée dans le financement de l’immobilier commercial. 🎯 Incident En mars 2026, le groupe cybercriminel ShinyHunters a ciblé Berkadia dans le cadre d’une campagne d’extorsion de type “pay or leak” (payer ou voir les données publiées). Face au refus ou à l’absence de paiement, le groupe a procédé à la publication des données volées.

CyberVeille
CyberVeille.ch19h ago

📢 ShinyHunters extorque Infinite Campus et publie les données de 137 000 utilisateurs
📝 ## 🗓️ Contexte

Source : HaveIBeenPwned (haveibeenpwned.com/Breach/InfiniteCampus), publié le 15 juin 2026.
📖 cyberveille : https://cyberveille.ch/posts/2026-06-17-shinyhunters-extorque-infinite-campus-et-publie-les-donnees-de-137-000-utilisateurs/
🌐 source : https://haveibeenpwned.com/Breach/InfiniteCampus
#ShinyHunters #TTP #Cyberveille

ShinyHunters extorque Infinite Campus et publie les données de 137 000 utilisateurs

🗓️ Contexte Source : HaveIBeenPwned (haveibeenpwned.com/Breach/InfiniteCampus), publié le 15 juin 2026. L’incident concerne Infinite Campus, un système d’information scolaire (SIS) utilisé dans le secteur éducatif américain. 🎯 Déroulement de l’attaque En mars 2026, le groupe cybercriminel ShinyHunters a ciblé Infinite Campus dans le cadre d’une campagne d’extorsion de type « pay or leak » (payer ou les données seront publiées). Face au refus ou à l’absence de paiement, le groupe a procédé à la publication des données volées.

CyberVeille
Marcel SIneM(S)US21h ago
Cybergang #ShinyHunters attackiert #Oracle-PeopleSoft-Schwachstelle | Security https://www.heise.de/news/Cybergang-ShinyHunters-attackiert-Oracle-PeopleSoft-Schwachstelle-11331861.html #ZeroDay #0day #UNC6240 #Patchday
Cybergang ShinyHunters attackiert Oracle-PeopleSoft-Schwachstelle

Die kriminelle Gruppe ShinyHunters greift die kritische Sicherheitslücke in Oracle PeopleSoft an, die zum Wochenende bekannt wurde.

heise online
🖱🛠👉👕👈 SOSOrdinet 🎣🖥️🐛 🗞️23h ago

#ShinyHunters : le cyber-groupe revendique une ex-filtration de données de 297 Go du Conseil de l'Europe !

https://blog.sosordi.net/2026/06/shinyhunters-le-cyber-groupe-revendique-une-ex-filtration-de-donnees-de-297-go-du-conseil-de-leurope.html

#securite #data #vieprivee #Internet