Charter Communications Data Breach Exposes 4.9 Million Accounts

Charter Communications Data Breach Exposes 4.9 Million Accounts

First seen 29 May 2026, 09:09 UTC Bleepingcomputerhaveibeenpwned.comTechliciousSecurityaffairs.Cowww.cybrsecmedia.com+5 85% similarity 51.9

Article Content

Browse articles
ThreatCluster

In early April 2026, Charter Communications suffered a data breach affecting 4.9 million accounts, attributed to the ShinyHunters extortion gang. The attackers accessed an employee's Microsoft Entra account via a voice phishing attack, allowing them to steal data from the company's Salesforce instance. The stolen information includes names, email addresses, physical addresses, phone numbers, and job titles from an internal directory. Charter confirmed the breach but stated that no sensitive personal information or customer proprietary network information was exfiltrated. After Charter refused to pay the ransom, ShinyHunters leaked the stolen data on their dark web site. The FBI has advised victims not to comply with ransom demands, as it does not guarantee the return or destruction of stolen data.

Key Points: • 4.9 million accounts affected by Charter Communications data breach. • Attackers used voice phishing to compromise an employee's Microsoft Entra account. • ShinyHunters extortion gang claimed responsibility and leaked the stolen data.

ThreatCluster AI

Timeline

2026-04-01
Charter Communications breached
ShinyHunters accessed Charter's systems through a voice phishing attack, compromising an employee's account.
BleepingComputer
2026-05-29
Data leak confirmed
ShinyHunters published the stolen data, exposing 4.9 million email addresses and other personal information.
haveibeenpwned.com
2026-05-29
Charter confirms breach
Charter Communications acknowledged the breach and stated that no sensitive personal information was exfiltrated.
BleepingComputer

Community

Browse all →