Snowflake is a organization tracked across 29 threat clusters and 40 intelligence report mentions on ThreatCluster. First observed November 13, 2025; most recent activity July 1, 2026.
A critical zero-day vulnerability (CVE-2026-35273) in Oracle PeopleSoft has been exploited by the ShinyHunters group, leading to breaches of over 100 organizations, primarily in the education sector. The vulnerability…
A supply chain attack on the node-ipc npm package has compromised three versions (9.1.6, 9.2.3, 12.0.1) with credential-stealing malware. The attack exploited an expired domain to hijack a dormant maintainer account,…
Peter Stokes, a 19-year-old dual citizen of the U.S. and Estonia, was extradited from Finland to the U.S. to face charges related to his involvement in the Scattered Spider hacking group. The group has been linked to…
Nissan disclosed a data breach affecting current and former employees after attackers exploited a critical vulnerability in Oracle PeopleSoft, specifically CVE-2026-35273. This breach potentially exposed sensitive…
Between August 9 and August 17, 2025, the threat actor UNC6395 exploited stolen OAuth tokens from Salesloft's Drift integration to access Salesforce environments of over 700 organizations, including major tech firms.…
7-Eleven confirmed a cyberattack that occurred in April 2026, where unauthorized access to its internal systems exposed personal information linked to franchisee applications. The breach was claimed by the ShinyHunters…
Thalha Jubair, 20, and Owen Flowers, 18, have pleaded guilty to a cyber attack on Transport for London (TfL) that occurred between August 29 and September 6, 2024. The attack, attributed to the Scattered Spider hacking…
Kodak has confirmed a data breach after the ShinyHunters extortion group claimed responsibility for stealing over 2.2 million records, including customer personally identifiable information (PII) and internal corporate…
A breach at a SaaS integration provider has led to data theft attacks affecting over a dozen companies, primarily targeting Snowflake's cloud-based data warehouse platform. The attackers exploited stolen authentication…
In April 2026, McGraw Hill confirmed a data breach affecting approximately 13.5 million user accounts, attributed to a misconfiguration in its Salesforce environment. The ShinyHunters extortion group claimed…