Home > Security > Security News

2.7 Million Sysco Emails Leaked Following ShinyHunters Data Breach

Published
Written by:
Lore Apostol
Lore Apostol
Cybersecurity Writer
Ransomware1
Summarize with:
ChatGPT logo ChatGPT Claude.ai logo Claude.ai Google AI logo Google AI Grok logo Grok Perplexity logo Perplexity
Google logo Add as preferred source on Google
Key Takeaways
  • Campaign Confirmed: ShinyHunters targeted Sysco in a June 2026 "pay or leak" extortion campaign.
  • Data Exposed: The published dataset contained approximately 2.7 million unique email addresses.
  • Records Affected: Compromised information spanned both staff and customers.

Sysco, the food distribution company, was targeted by a ShinyHunters "pay or leak" extortion campaign in June 2026. After the demand, the threat group published a dataset it claims was taken from Sysco. Breach Notification Service Have I Been Pwned (HIBP) added 2,691,852 compromised accounts to its database on June 28.

2.7 Million Email Addresses Leaked

The exposed records consisted largely of corporate contact information, combining identifying details with business-related fields, exposing a large volume of corporate and personal information tied to staff and customers. 

According to HIBP, the Sysco data breach includes:

ShinyHunters claimed breaching Sysco | Source: Cybernews
ShinyHunters claimed breaching Sysco | Source: Cybernews

ShinyHunters Target Streak

The ShinyHunters extortion model pressures targets to pay before stolen data is released. When the demand went unmet, the actors published the Sysco dataset, shifting the incident from a private extortion attempt to a public exposure.

The threat actor claimed to have stolen more than 61 million Salesforce records. The Qilin ransomware group also announced in early May that it had breached the USA-based grocery retail and food distribution company.

Other recent companies claimed by the extortion group include American Tower and Ralph Lauren. In March, ShinyHunters said it compromised Snowflake, Okta, Sony, AMD, Lastpass, and Salesforce Data Compromise via a massive Salesforce breach.  

Add a Comment
Related
Weekly Cybersecurity Roundup: Building Resilience Before Attacks and Watching Where AI Changes the Rules
Unlocked padlock depicting data breach
American Tower Data Breach: 215,000+ Accounts Exposed in ShinyHunters Attack
whitefly_espionage
Gamaredon 2025: New Tools, Turla Alliance, Cloud Exfiltration
Canada’s TD Bank Deploys WorkiQ Surveillance Software Amid Privacy Gaps
Polymarket Confirms Crypto Hack, Refunds User Stolen Funds After Third-Party Vendor Breach
Adblock for YouTube Chrome Extension Hides Dormant JavaScript Injection
Most Popular
Why SAP Access Governance Needs Business Context, Besides Automation
Mullvad Says It Doesn't Keep Logs. I Verified the Claim Using Mullvad's Policies, Audit Reports, and Legal Records - Here is What I Found
Weekly Cybersecurity Roundup: Building Resilience Before Attacks and Watching Where AI Changes the Rules
Unlocked padlock depicting data breach
American Tower Data Breach: 215,000+ Accounts Exposed in ShinyHunters Attack
whitefly_espionage
Gamaredon 2025: New Tools, Turla Alliance, Cloud Exfiltration
Canada’s TD Bank Deploys WorkiQ Surveillance Software Amid Privacy Gaps
Why SAP Access Governance Needs Business Context, Besides Automation
Mullvad Says It Doesn't Keep Logs. I Verified the Claim Using Mullvad's Policies, Audit Reports, and Legal Records - Here is What I Found
Weekly Cybersecurity Roundup: Building Resilience Before Attacks and Watching Where AI Changes the Rules
American Tower Data Breach: 215,000+ Accounts Exposed in ShinyHunters Attack
Gamaredon 2025: New Tools, Turla Alliance, Cloud Exfiltration
Canada’s TD Bank Deploys WorkiQ Surveillance Software Amid Privacy Gaps

Most Popular
Why SAP Access Governance Needs Business Context, Besides Automation
Mullvad Says It Doesn't Keep Logs. I Verified the Claim Using Mullvad's Policies, Audit Reports, and Legal Records - Here is What I Found
Weekly Cybersecurity Roundup: Building Resilience Before Attacks and Watching Where AI Changes the Rules
Unlocked padlock depicting data breach
American Tower Data Breach: 215,000+ Accounts Exposed in ShinyHunters Attack
whitefly_espionage
Gamaredon 2025: New Tools, Turla Alliance, Cloud Exfiltration
Canada’s TD Bank Deploys WorkiQ Surveillance Software Amid Privacy Gaps
Why SAP Access Governance Needs Business Context, Besides Automation
Mullvad Says It Doesn't Keep Logs. I Verified the Claim Using Mullvad's Policies, Audit Reports, and Legal Records - Here is What I Found
Weekly Cybersecurity Roundup: Building Resilience Before Attacks and Watching Where AI Changes the Rules
American Tower Data Breach: 215,000+ Accounts Exposed in ShinyHunters Attack
Gamaredon 2025: New Tools, Turla Alliance, Cloud Exfiltration
Canada’s TD Bank Deploys WorkiQ Surveillance Software Amid Privacy Gaps

TechNadu keeps you informed with the latest in cybersecurity, VPNs, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2026 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: