Wealthsimple experienced a data breach, likely linked to the ShinyHunters group's ongoing Salesloft supply-chain campaign, resulting in unauthorized access to personal and financial data for a small percentage of clients, with the breach originating from a compromised third-party software package. The incident highlights ShinyHunters' evolving tactics, shifting from voice phishing to exploiting stolen OAuth tokens for cloud environment exploitation.