Shinyhunters has claimed to compromise BCD Travel’s data in the Netherlands, exfiltrating over 700,000 Salesforce records and various SharePoint corporate sites. The threat actor issued a final “pay or leak” warning, demanding contact by 1 June 2026 before data is allegedly leaked, citing annoying digital consequences. #Netherlands
Incident Details
- Victim: BCD Travel
- Sector: Business Services
- Country: NL
- Actor: shinyhunters
- Source:
- Discovered: 2026-05-29T13:24:06.881892+00:00
- Published: 2026-05-29T11:10:00+00:00
Information
- Over 700k Salesforce records and various SharePoint sites corporate data has been compromised.
- This is a final warning to make contact by 1 June 2026 before the data is leaked, along with several disruptive digital issues.
- Make the right decision and do not become the next headline.
- Pay or Leak.
- Updated: 29 May 2026.
- Warning: FINAL WARNING PAY OR LEAK.
Disclaimer: This post is based on public claims made by the ransomware group "shinyhunters". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.