data theft extortion Archives

credentials EUAC CUI classified secrets SMB

ShinyHunters Leads Surge in Vishing Attacks to Steal SaaS Data

Jeffrey Burt | February 2, 2026 | data theft extortion, Mandiant, MFA Bypass, Okta, Scattered Lapsus$ Hunters, ShinyHunters, Silent Push, Single sign-on (SSO) authentication, vishing as a service

Several threat clusters are using vishing in extortion campaigns that include tactics that are consistent with those used by high-profile threat group ShinyHunters. They are stealing SSO and MFA credentials to access ...

Security Boulevard

ShinyHunters Compromises Legacy Cloud Storage System of Checkout.com

Jeffrey Burt | November 14, 2025 | Data breach, data theft extortion, legacy system security risk, ShinyHunters

Checkout.com said the notorious ShinyHunters threat group breached a badly decommissioned legacy cloud storage system last used by the company in 2020 and stole some merchant data. The hackers demanded a ransom, ...

Security Boulevard

Extortion Group Exploits Cloud Misconfigurations, Targets 110,000 Domains

Jeffrey Burt | August 19, 2024 | Amazon Web Services (AWS), Cloud Security, data theft extortion

An unknown threat group leveraged publicly exposed environment variables in organizations' AWS accounts to exfiltrate sensitive data and demand ransoms in a wide-ranging extortion campaign that targeted 110,000 domains ...

Security Boulevard

data theft extortion

Senator Sanders Wants to Own AI Companies — and Hand America’s Adversaries the Keys

NIST’s Nine: The PQC Signature Race Moves to Round Three

The Quantum Arms Race: Why Washington Just Wrote a $2 Billion Check to Nine Companies

Beyond Moore’s Law: The Hyper-Acceleration of Autonomous AI Cyber Capabilities

The Exception Economy: When Security Teams Stop Protecting and Start Negotiating

GoPlus’s Latest Report Highlights How Blockchain Communities Are Leveraging Critical API Security Data To Mitigate Web3 Threats

C2A Security’s EVSec Risk Management and Automation Platform Gains Traction in Automotive Industry as Companies Seek to Efficiently Meet Regulatory Requirements

Zama Raises $73M in Series A Lead by Multicoin Capital and Protocol Labs to Commercialize Fully Homomorphic Encryption

RSM US Deploys Stellar Cyber Open XDR Platform to Secure Clients

ThreatHunter.ai Halts Hundreds of Attacks in the past 48 hours: Combating Ransomware and Nation-State Cyber Threats Head-On