ShinyHunters Extorts Red Hat, Top Brands on New Leak Site

Enterprise software giant Red Hat is being extorted by the ShinyHunters gang following a major data breach. The initial attack, carried out by a group called Crimson Collective, resulted in the theft of sensitive customer engagement reports, samples of which have now been leaked. This extortion effort is being facilitated through a new data leak site operated by ShinyHunters, who have partnered with the original hackers. The site also lists dozens of other major brands being extorted after their Salesforce instances were breached in a widespread campaign. This development marks the public launch of ShinyHunters' 'Extortion-as-a-Service' platform, where they facilitate attacks for other threat actors in exchange for a share of the profits.

Latest mentioned: 10-07

Earliest mentioned: 10-02

Sources

bleepingcomputer.com bleepingcomputer.com theregister.com

Also Read

Lampion Banking Trojan Evolves with New Social Engineering Tactics

A cybercriminal group has refined its malware campaign by incorporating innovative social engineering techniques and multi-stage infection chains to deliver the Lampion banking trojan. The campaign, active since 2019, targets Portuguese-speaking banks and uses complex infection methods to evade detection. Researchers have documented significant tactical evolution, including the use of ClickFix lures and compromised email accounts. The phishing emails employ convincing banking themes, and the infection chain comprises multiple obfuscated Visual Basic script stages. The Lampion stealer has evolved into a single 700MB DLL file, incorporating encrypted ZIP files to hinder detection.

10-31Read more →