Anthropic’s flagship AI model Claude Mythos was accessed by unauthorized Discord users through contractor credentials and URL guessing, prompting an official response, disputed claims by ShinyHunters, alarming AISI test results, and a ripple of concern across the AI and financial sectors.
In early 2026 a rival hacker group released 918 previously paid breach databases for free on Telegram, exposing internal disputes within ShinyHunters and aiming to cripple their attempt to revive BreachForums by making the data openly available.
In March 2026, the ShinyHunters ransomware group claimed to have breached Cisco's Salesforce CRM, GitHub repositories, and AWS S3 buckets, stealing over 3 million records that include personnel data from U.S. agencies such as the FBI, DHS, IRS, NASA, as well as Australian and Indian government entities, and issued an ultimatum for Cisco to respond by April 3.
The article breaks down the 2026 ShinyHunters breach list by industry, revealing that Salesforce systems were the primary target, and details massive data exposures across finance, government, retail, and social platforms while urging victims to secure accounts and avoid downloading the leaked files.
On March 30, 2026, the notorious hacker group ShinyHunters announced its exit from BreachForums and released the forum’s full database of over 324,000 users—including usernames, emails, IPs, login logs, and password salts—sparking a crisis of anonymity, trust, and potential law‑enforcement honeypot exposure.
Telus Digital confirmed a breach in which the ShinyHunters group claims to have exfiltrated close to 1 petabyte of data by leveraging Google Cloud credentials stolen from a prior Salesloft/Drift breach, affecting numerous customers and prompting a $65 million ransom demand.
