Home > Security > Security News

ShinyHunters Claims 297 GB Council of Europe Data Breach

Published
Written by:
Lore Apostol
Lore Apostol
Cybersecurity Writer
Three Hackers
Summarize with:
ChatGPT logo ChatGPT Claude.ai logo Claude.ai Google AI logo Google AI Grok logo Grok Perplexity logo Perplexity
Google logo Add as preferred source on Google
Key Takeaways
  • Breach Claimed: ShinyHunters claims to have breached the Council of Europe, targeting internal HR and personnel systems.
  • Data Volume: The threat actor alleges exfiltration of more than 297 GB of data across approximately 430,000 files.
  • Unverified Status: The claim was observed on June 14, 2026, and remains pending verification.

The threat actor known as ShinyHunters claims to have breached the Council of Europe, allegedly exfiltrating more than 297 GB of data comprising over 429,000 files, including over 409,000 payslips from more than 10,000 employees. The claim surfaced on June 14, 2026, and has not been independently confirmed.

What ShinyHunters Claims to Have Exfiltrated

According to the threat actor, the dataset pulled from the Council of Europe spans a wide range of internal employee records. The listed contents include:

ShinyHunters claims Council of Europe | Source: HackManac on  X
ShinyHunters claims Council of Europe | Source: HackManac on  X

If accurate, this combination would expose both administrative documentation and deeply personal data tied to staff. 

A ShinyHunters spokesperson told The Register that the group infiltrated the Council systems by exploiting the Oracle PeopleSoft vulnerability tracked as CVE-2026-35273. This flaw is remotely exploitable without authentication and may result in remote code execution (RCE), according to Oracle’s advisory.

Assessing the Threat

ShinyHunters has an established reputation across the threat intelligence community for high-volume extortion and data-leak campaigns.

At this stage, the incident rests solely on assertions attributed to ShinyHunters. No validated details beyond the actor's claims are currently available, and the status remains pending verification.

In other recent news, ShinyHunters published Infinite Campus data as part of an extortion campaign linked to Salesforce. In May, the threat actor attacked Charter Communications, Kemper Corporation, Ameriprise Financial, 7-Eleven Inc., Woflow Inc., and Vimeo

Last year, Cl0p Ransomware exploited the Oracle E-Business Suite (EBS) flaw to attack the Washington Post, a Canon subsidiary, and Logitech, among the over 100+ impacted organizations

Add a Comment
Related
Data Breach
iRhythm Holdings Discloses Third-Party Data Breach via Social Engineering
ShinyHunters Publishes Infinite Campus Data in Extortion Campaign Linked to Salesforce, 137,000+ Emails Exposed
Nintendo Data Breach: Hacker Claims Stealing Approximately 860 MB via TINYpulse Systems
Cyber Job Moves: From Boardroom Shifts to AI Security Bets, Cyber Firms Reshape Leadership | Week of June 14-20
Weekly Cybersecurity Roundup: Major Law Enforcement Takedowns, University Breaches, Deepfake Victims, and Romance Lures
Hacktivist Groups 4BID, Hakerskii Kit, and C.A.S. Broaden Attack Geography, Report Says
Most Popular
Data Breach
iRhythm Holdings Discloses Third-Party Data Breach via Social Engineering
Samsung MAX VPN Service Ends, Users Shift to Alternatives
Samsung MAX VPN Shuts Down, Leaving Millions of Galaxy Users Without Built-In Protection
Power Without Control: What Anthropic’s Claude Fable 5 and Mythos 5 Mean for Enterprise Security, AI Governance, and Risk
ShinyHunters Publishes Infinite Campus Data in Extortion Campaign Linked to Salesforce, 137,000+ Emails Exposed
Nintendo Data Breach: Hacker Claims Stealing Approximately 860 MB via TINYpulse Systems
Cyber Job Moves: From Boardroom Shifts to AI Security Bets, Cyber Firms Reshape Leadership | Week of June 14-20
iRhythm Holdings Discloses Third-Party Data Breach via Social Engineering
Samsung MAX VPN Shuts Down, Leaving Millions of Galaxy Users Without Built-In Protection
Power Without Control: What Anthropic’s Claude Fable 5 and Mythos 5 Mean for Enterprise Security, AI Governance, and Risk
ShinyHunters Publishes Infinite Campus Data in Extortion Campaign Linked to Salesforce, 137,000+ Emails Exposed
Nintendo Data Breach: Hacker Claims Stealing Approximately 860 MB via TINYpulse Systems
Cyber Job Moves: From Boardroom Shifts to AI Security Bets, Cyber Firms Reshape Leadership | Week of June 14-20

Most Popular
Data Breach
iRhythm Holdings Discloses Third-Party Data Breach via Social Engineering
Samsung MAX VPN Service Ends, Users Shift to Alternatives
Samsung MAX VPN Shuts Down, Leaving Millions of Galaxy Users Without Built-In Protection
Power Without Control: What Anthropic’s Claude Fable 5 and Mythos 5 Mean for Enterprise Security, AI Governance, and Risk
ShinyHunters Publishes Infinite Campus Data in Extortion Campaign Linked to Salesforce, 137,000+ Emails Exposed
Nintendo Data Breach: Hacker Claims Stealing Approximately 860 MB via TINYpulse Systems
Cyber Job Moves: From Boardroom Shifts to AI Security Bets, Cyber Firms Reshape Leadership | Week of June 14-20
iRhythm Holdings Discloses Third-Party Data Breach via Social Engineering
Samsung MAX VPN Shuts Down, Leaving Millions of Galaxy Users Without Built-In Protection
Power Without Control: What Anthropic’s Claude Fable 5 and Mythos 5 Mean for Enterprise Security, AI Governance, and Risk
ShinyHunters Publishes Infinite Campus Data in Extortion Campaign Linked to Salesforce, 137,000+ Emails Exposed
Nintendo Data Breach: Hacker Claims Stealing Approximately 860 MB via TINYpulse Systems
Cyber Job Moves: From Boardroom Shifts to AI Security Bets, Cyber Firms Reshape Leadership | Week of June 14-20

TechNadu keeps you informed with the latest in cybersecurity, VPNs, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2026 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: