Our Daily Breach: 2many2shiny

Last year I watched a romance scam unfold like a slow trainwreck. It was in front of the Bitcoin ATM at my neighborhood convenience store as the man lost his temper while talking with the scammer. I never got a chance to follow up with the old man, but I was thinking of him this morning as I browsed the new ShinyHunters leaks site.

shinypogk4jjniry5qi7247tznop6mxdrdte2k6pdu5cyo43vdzmrwid[.]onion

To save you some time and risk, the gang is demanding ransom payments or else they'll leak GBs of data on 39 companies. The companies affected are across multiple sectors and the only way I can summarize - it affects pretty much any company you can think of with way too much data on people. Salesforce, Toyota, FedEx, UPS, TransUnion, Disney, HBO Max, Home Depot, McDonalds, KFC, GAP, Albertsons, Chanel, IKEA, Petco, to name a few of the 7 pages of leaks with samples. These are all these massive enterprises that are about to popped in a week. If there is a season 3 of Our Daily Breach, it is going to be spicy.

I don't anticipate that any of these larger institutions to pay, they should know better, but it's not unprecedented. In 2024 the global ransomware payout was $813,550,000.

The good news is that overall ransom payouts dropped hard (-35%) and on my local front, the Bitcoin ATM that the old man poured his heart and wallet into last year, it's been unplugged and put on the curb for collection. The store owner will not be hosting another one.