Collecting Cyber-News from over 60 sources

Tag: extortion

FulcrumSec Targets Novo Nordisk, Leaks Clinical and Research Data

Jun 17, 2026 12:02 PM

Tags: ai, breach, data, data-breach, extortion, group, leak, ransom, theft

FulcrumSec leaked data stolen from Novo Nordisk, claiming to have exfiltrated 1.3TB, including clinical records and AI research assets. On June 15, 2026, a data-theft extortion group calling itself FulcrumSec began leaking files from Novo Nordisk, the Danish maker of Ozempic and Wegovy, after the company refused a $25 million ransom demand. The attackers claimed…
Kodak confirms data breach claimed by ShinyHunters extortion gang

Jun 17, 2026 10:02 AM

Tags: access, breach, cybersecurity, data, data-breach, extortion, hacker

Kodak has confirmed that it’s working with external cybersecurity experts to investigate a security breach after hackers gained access to some of the company’s data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/kodak-confirms-data-breach-claimed-by-shinyhunters-extortion-gang/
Kodak confirms data breach claimed by ShinyHunters extortion gang

Jun 17, 2026 10:02 AM

Tags: access, breach, cybersecurity, data, data-breach, extortion, hacker

Kodak has confirmed that it’s working with external cybersecurity experts to investigate a security breach after hackers gained access to some of the company’s data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/kodak-confirms-data-breach-claimed-by-shinyhunters-extortion-gang/
‘Lorem Ipsum’ Malware Pivots to ClickFix Delivery

Jun 16, 2026 5:01 PM

Tags: data, extortion, group, malware, ransomware, wordpress

New analysis shows the campaign, which uses compromised WordPress sites, may be linked to the ransomware and data extortion group Vice Society. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/lorem-ipsum-malware-clickfix-delivery
Silent Ransom Group Targets US Legal Firms With Voice Phishing and Data Theft Extortion

Jun 16, 2026 4:01 PM

Tags: cyber, data, extortion, finance, group, office, phishing, ransom, service, social-engineering, theft, tool

A concentrated data theft extortion campaign by UNC3753 also reported as Luna Moth, Chatty Spider, and Silent Ransom Group targeting dozens of U.S. professional, legal, and financial services firms. The cluster’s hallmark is fast, human-centric intrusions that combine voice phishing (vishing), social engineering, abuse of legitimate remote support tools, and in some cases physical office…
Silent Ransom Group Targets US Legal Firms With Voice Phishing and Data Theft Extortion

Jun 16, 2026 4:01 PM

Tags: cyber, data, extortion, finance, group, office, phishing, ransom, service, social-engineering, theft, tool

A concentrated data theft extortion campaign by UNC3753 also reported as Luna Moth, Chatty Spider, and Silent Ransom Group targeting dozens of U.S. professional, legal, and financial services firms. The cluster’s hallmark is fast, human-centric intrusions that combine voice phishing (vishing), social engineering, abuse of legitimate remote support tools, and in some cases physical office…
Infinite Campus Breach Leaks Personal Information of 137,000 Users

Jun 16, 2026 2:02 PM

Tags: breach, cyber, data, data-breach, extortion, leak, threat

A data breach affecting the widely used K12 student information system, Infinite Campus, has exposed the personal information of approximately 137,000 users. This incident is linked to an extortion campaign that occurred in March 2026 and has been attributed to the ShinyHunters threat group. It was officially recorded on Have I Been Pwned (HIBP). This…
ShinyHunters drohen Eastman Kodak mit Datenleck

Jun 16, 2026 1:01 PM

Tags: data-breach, extortion

Die Hackergruppe ShinyHunters erpresst Eastman Kodak. Die Täter behaupten, über 2,2 Millionen Kundendaten entwendet zu haben, und drohen mit Veröffentlichung. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/eastman-kodak-shinyhunters
ShinyHunters Hits Universities Via Oracle Zero-Day

Jun 16, 2026 1:01 AM

Tags: breach, exploit, extortion, google, group, intelligence, mandiant, oracle, threat, zero-day

Mandiant: 68% of Targets Were Higher Ed Institutions Running PeopleSoft. ShinyHunters exploited a critical zero-day in Oracle PeopleSoft to breach more than 100 organizations globally, researchers at Mandiant and Google’s Threat Intelligence Group said, with universities and colleges accounting for the majority of confirmed targets in the active extortion campaign. First seen on govinfosecurity.com Jump…
Nintendo Alleged Data Breach: Threat Actor Demands $2M Ransom

Jun 16, 2026 1:01 AM

Tags: breach, data, data-breach, extortion, ransom, threat

Nintendo faces an alleged data extortion incident involving HR records, internal reports, and potential exposure of third-party vendors. The post Nintendo Alleged Data Breach: Threat Actor Demands $2M Ransom appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-nintendo-alleged-data-leak-third-party-risk/
Council of Europe investigates ShinyHunters data breach claims

Jun 15, 2026 7:01 PM

Tags: breach, data, data-breach, extortion, group

The Council of Europe, the continent’s oldest intergovernmental body, is probing claims of a data breach made by the ShinyHunters extortion group over the weekend. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/council-of-europe-investigates-shinyhunters-data-breach-claims/
Infinite Campus data breach affects 137,000 school staff accounts

Jun 15, 2026 3:01 PM

Tags: attack, breach, data, data-breach, extortion, theft

The ShinyHunters extortion gang stole personal information from more than 137,000 school staff accounts in a Salesforce data theft attack that targeted the widely used Infinite Campus K-12 student information system in March. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/infinite-campus-data-breach-affects-137-000-school-staff-accounts/
Silent Ransom Group: what you need to know

Jun 12, 2026 7:04 PM

Tags: extortion, group, office, phone, ransom

Most extortion gangs hide behind a keyboard. Silent Ransom Group will phone your staff pretending to be IT support – and if that fails, send someone to your office in person to plug in a USB stick. First seen on fortra.com Jump to article: www.fortra.com/blog/silent-ransom-group-what-you-need-know
ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities

Jun 12, 2026 12:02 AM

Tags: advisory, breach, data, exploit, extortion, flaw, group, mandiant, oracle, zero-day

The ShinyHunters extortion crew exploited an unpatched flaw in Oracle PeopleSoft to break into enterprise systems, steal data, and demand payment to keep it private. The campaign hit universities hardest.Google’s Mandiant attributes it to the group it tracks as UNC6240, and dates the activity between May 27 and June 9. Oracle did not publish its…
The Gentlemen Ransomware Claims 478 Victims, Can Spread Like a Worm

Jun 11, 2026 8:04 PM

Tags: attack, extortion, group, lockbit, ransomware, service, threat, worm

A new analysis of The Gentlemen operation has revealed that the financially motivated threat group initially operated as an affiliate responsible for conducting double extortion attacks, while leveraging resources from various ransomware-as-a-service (RaaS) schemes like LockBit (aka Tenacious Mantis), Qilin (aka Pestilent Mantis), and Medusa (aka Venomous Mantis).According to a detailed report First seen on…
Extortion-Only Attacks Increase, With Data Theft Dominating Ransomware Claims

Jun 11, 2026 1:02 PM

Tags: attack, breach, data, data-breach, extortion, ransomware, theft

Extortion-only attacks are increasing as data theft drives most ransomware claims, with many organizations unable to stop stolen data from being exposed First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/extortion-only-attacks-surge/
Silent Ransom Group Hits US Law Firms in Escalating Extortion Attacks

Jun 8, 2026 11:43 PM

Tags: attack, data, extortion, group, law, office, ransom

The financially motivated group is combining vishing, IT impersonation, and in-person office intrusions to steal data and extort victims. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/silent-ransom-us-law-firms-extortion-attacks
Pink Hacking Group Targets Enterprises to Steal Cloud Passwords

Jun 8, 2026 3:44 PM

Tags: attack, cloud, credentials, cyber, extortion, group, hacking, leak, mfa, password, phishing, social-engineering

A newly observed extortion brand called Pink (CL-CRI-1147) that is actively targeting enterprise users to harvest cloud storage credentials and bypass multi-factor authentication. The group’s leak site went live on May 31, 2026, and its operations combine social engineering with classic credential-phishing to quickly convert compromised accounts into extortion leverage. Pink’s attack chain begins with…
UNC3753 Escalates: From Vishing Calls to Physical Office Intrusions at US Legal and Financial Firms

Jun 8, 2026 2:42 PM

Tags: cybercrime, extortion, finance, google, group, intelligence, mandiant, office, phone, threat

UNC3753 phones staff posing as IT, hijacks screen sessions, steals sensitive legal files, and now sends operatives physically into offices to plug in USB drives. Google Mandiant and the Google Threat Intelligence Group published a detailed report documenting an active extortion campaign carried out by the cybercrime group UNC3753 (aka Luna Moth, Chatty Spider, and…
UNC3753 Used Vishing and Physical Intrusions in U.S. Data Theft Extortion Campaign

Jun 8, 2026 11:42 AM

Tags: cybersecurity, data, extortion, finance, google, group, intelligence, mandiant, service, theft, threat

Cybersecurity researchers have disclosed details of a financially motivated data theft extortion campaign that has targeted dozens of organizations across professional, legal, and financial services in the U.S. between January and May 2026.The activity has been attributed by Google Mandiant and Google Threat Intelligence Group (GTIG) to a threat actor dubbed UNC3753, which is also…
DentaQuest Breach: ShinyHunters Publish Data Impacting 2.6M People

Jun 7, 2026 9:42 PM

Tags: breach, cybercrime, data, data-breach, extortion, group, leak

ShinyHunters leaked 234 GB of data allegedly stolen from DentaQuest after failed negotiations, potentially impacting 2.6 million people. The ShinyHunters extortion group has published a 234 GB archive of data allegedly stolen from dental benefits administrator DentaQuest. The cybercrime gang added the company to its Tor data leak site in May, and the data was…
Silent Ransom Group targets law firms with fake IT support calls

Jun 7, 2026 4:42 PM

Tags: attack, cybersecurity, data, extortion, group, law, ransom, service, social-engineering, theft

The Silent Ransom Group extortion gang is actively targeting U.S. law firms and professional services organizations in social engineering attacks that often lead to data theft within hours of initial contact, according to a new report by cybersecurity firm Mandiant. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/silent-ransom-group-targets-law-firms-with-fake-it-support-calls/
New Pink Extortion Group Targets Microsoft 365 Cloud Data Via Vishing Scams

Jun 6, 2026 9:42 PM

Tags: authentication, cloud, cybersecurity, data, extortion, group, mfa, microsoft, phishing, scam, threat

Cybersecurity researchers are warning businesses about Pink Extortion Group, a threat actor that uses voice phishing to bypass multi-factor authentication and steal files from cloud environments. First seen on hackread.com Jump to article: hackread.com/pink-extortion-microsoft-365-cloud-data-vishing-scams/
The Cyber Express Weekly Roundup: Cloud Extortion, Long-Term Espionage, Android Zero-Days, and Public Sector Security Reviews

Jun 5, 2026 2:42 PM

Tags: access, android, attack, cloud, credentials, cyber, cybersecurity, espionage, exploit, extortion, identity, threat, zero-day

The cybersecurity landscape in this weekly roundup continues to show a clear shift toward identity-driven attacks, long-term persistence operations, and exploitation of trusted cloud environments. Threat actors are increasingly focusing on stealing credentials, abusing administrative access, and leveraging legitimate platforms to scale impact across organizations. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/tce-weekly-roundup-extortion-android-cloud/
ShinyHunters Leaks Charter Communications Data, Potentially Impacting 5 Million Customers

May 30, 2026 7:42 PM

Tags: breach, communications, cybercrime, data, data-breach, extortion, group, leak

Cybercrime group ShinyHunters leaked data allegedly stolen from Charter Communications, exposing millions of customer records after a failed extortion attempt. The ShinyHunters extortion group has published data allegedly stolen from Charter Communications after the company apparently refused to pay a ransom. Charter Communications is one of the largest telecommunications companies in the United States. It…
Charter confirms data breach after ShinyHunters extortion threat

May 26, 2026 11:00 PM

Tags: breach, communications, data, data-breach, extortion, group, leak, ransom, threat

U.S. telecommunications giant Charter Communications has confirmed it suffered a data breach after the ShinyHunters extortion group threatened to leak stolen data unless a ransom is paid. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/charter-confirms-data-breach-after-shinyhunters-extortion-threat/
The Hidden Ransomware Economy Running on Exposed Databases

May 26, 2026 9:01 PM

Tags: attack, data-breach, extortion, leak, ransom, ransomware

A 5-year study on the Ransomware Economy found that 30,515 exposed databases were hit by ransom attacks, causing massive damage despite victims never paying. Database extortion doesn’t look like the ransomware stories that usually grab headlines. There’s no slick branding, no leak-site countdown, no gang posting memes on Telegram. In most cases, there’s just a…
Personal information of 185,000 people exposed after cyberattack on 7-Eleven

May 26, 2026 3:00 PM

Tags: cyberattack, data, data-breach, extortion

Data belonging to about 185,000 people was exposed following a cyberattack on convenience store chain 7-Eleven that was later claimed by the ShinyHunters extortion gang, … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/26/7-eleven-data-breach-shinyhunters/
NightSpire Ransomware Abuses RDP for Stealthy Persistence

May 26, 2026 1:00 PM

Tags: cyber, data, extortion, leak, malware, ransom, ransomware, tactics, threat

NightSpire has quickly emerged as a significant ransomware threat since its discovery in early 2025, combining classic double-extortion tactics with stealthy intrusion techniques. The malware not only encrypts victim data but also exfiltrates sensitive files, threatening to publish them on a Tor-based leak site if ransom demands are not met. In just a three-month window…
7-Eleven data breach exposes personal information of 185,000 people

May 26, 2026 10:00 AM

Tags: breach, data, data-breach, extortion, hacking, service

The ShinyHunters extortion gang stole the personal information of over 183,000 people after hacking the systems of convenience store chain giant 7-Eleven in April, according to data breach notification service Have I Been Pwned. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/7-eleven-data-breach-exposes-personal-information-of-185-000-people/