ShinyHunters
NEWS ROUNDUP – 8th May 2026
Investigations this cycle examined exposed military training records, a trojanised DAEMON Tools software supply-chain compromise, and exploitation targeting PAN-OS captive portals. Authorities also detailed North Korean remote IT worker fraud operations and database deletion offences, while Queensland schools assessed fallout from stolen student records linked to the QLearn environment. NIST additionally updated guidance covering positioning, navigation and timing cybersecurity risks.
NEWS ROUNDUP – 4th May 2026
Investigations span exposed property records in Tasmania, stolen Canvas student data, and a breach affecting Asian football organisations. Authorities warn of cyber-enabled cargo theft, while researchers link Shadow-Earth-053 to infrastructure targeting. Active cPanel exploitation and OAuth abuse campaigns expand attack surfaces, as new guidance highlights risks from autonomous AI systems and investigative challenges in evidence attribution.
NEWS ROUNDUP – 29th April 2026
Backdoored WordPress plugin updates created unauthorised access across production sites, while investigators examined coordinated campaigns targeting enterprise messaging infrastructure and exposed administrative tooling. Enforcement activity linked to DDoS-for-hire disruption operations and regulatory developments around AI and crypto governance further illustrated how technical compromise, investigative response, and policy intervention continue to converge across operational security environments.
NEWS ROUNDUP – 27th April 2026
This 48-hour roundup covers FIRESTARTER on a Cisco ASA device, Signal phishing targeting German politicians, GopherWhisper activity against government targets, ADT and Medtronic data incidents, Breeze Cache exploitation, CISA KEV additions, Singapore and Telangana cybercrime arrests, and Cyber Essentials Danzell transition guidance, with emphasis on evidence integrity, platform records, vulnerability exposure, and cross-border investigative readiness.
NEWS ROUNDUP – 20th April 2026
Vercel traced a customer-impacting breach to a compromised OAuth app, while investigators in India linked abusive Google Drive activity to specific IP records. Police dismantled mule-account fraud networks, and a Scattered Spider member entered a guilty plea. Meanwhile, Bluesky faced DDoS disruption and UK officials advanced board-level cyber-resilience expectations across major organisations nationwide.
