CarGurus is a organization tracked across 4 threat clusters and 11 intelligence report mentions on ThreatCluster. First observed February 21, 2026; most recent activity June 12, 2026.
A critical zero-day vulnerability (CVE-2026-35273) in Oracle PeopleSoft has been exploited by the ShinyHunters group, leading to breaches of over 100 organizations, primarily in the education sector. The vulnerability…
In April 2026, McGraw Hill confirmed a data breach affecting approximately 13.5 million user accounts, attributed to a misconfiguration in its Salesforce environment. The ShinyHunters extortion group claimed…
The ShinyHunters extortion group published personal information from over 12 million records allegedly stolen from CarGurus, a digital auto platform. The breach includes sensitive data from both personal and corporate…
According to CrowdStrike's annual global threat report, the average breakout time from initial network intrusion to other systems has decreased to 29 minutes in 2025, significantly faster than previous years. The report…