Multiple other companies purportedly breached by ShinyHunters, over 9M record leak warned

Hacking operation ShinyHunters has claimed to have compromised nine major brands, including fast fashion retailer Zara, convenience store chain 7-Eleven, and cruise line operator Carnival Corporation, while warning that it would release over 9 million records with personally identifiable information and internal data should the demanded ransom remain unpaid by Apr. 21, Cybernews reports.

Zara allegedly had its BigQuery instances breached following the hack of Israeli AI analytics company Anodot, which was previously reported to have enabled the infiltration of Rockstar Games' Snowflake environment. Inditex, the parent firm of Zara, had already confirmed identifying unauthorized access to its databases without directly naming Anodot. On the other hand, 7-Eleven was claimed to have had its systems compromised through the breach of its Salesforce environment, resulting in the theft of more than 600,000 records.

Other firms exposed via Salesforce were global ecommerce firm Pitney Bowes, financial services firm Canada Life Assurance Company, ultra-luxury hospitality company Aman Resorts, and commercial real estate broker Marcus & Millichap. ShinyHunters also purportedly stole over 8.7 million records from Carnival Corporation. Such a development comes as U.S. home security provider Alert 360 had 2.5 million records spilled by the hacking group following the company's refusal to fulfill its demands.