ShinyHunters Remain Active Despite Supposed Hiatus
| Source: Mastodon | Original article
ShinyHunters' hacking spree continues with new breaches and arrests. SAP-related npm packages were backdoored with a credential stealer.
ShinyHunters, a notorious black-hat hacker group, has been active again, with a recent wave of breaches and cyberattacks. As we reported earlier, ShinyHunters has been involved in several high-profile data breaches, including the Odido breach in February 2026, which exposed sensitive data of 6.2 million customers, and the ADT Salesforce data breach, where they claimed responsibility for compromising over 10 million records.
This week's news cycle reveals a more uncomfortable story, with SAP-related npm packages being backdoored with a credential stealer. This incident highlights the group's continued ability to exploit vulnerabilities and compromise sensitive data. The fact that ShinyHunters did not take a break from their malicious activities, despite the usual expectations of a lull, is a concern for cybersecurity experts.
What matters is that ShinyHunters' activities demonstrate the ongoing threat of cyberattacks and data breaches, emphasizing the need for organizations to prioritize cybersecurity and patch vulnerabilities promptly. As the group's activities continue to evolve, it is essential to monitor their movements and be prepared for potential future breaches. With ShinyHunters showing no signs of slowing down, the cybersecurity community must remain vigilant and proactive in defending against their attacks.
Sources
Back to AIPULSEN