A recent report reveals that the cybercriminal alliance “Trinity of Chaos” has evolved into a ransomware group targeting major global corporations, including Google, Cisco, and airlines. They have published a massive leak of sensitive data, highlighting the ongoing threat of sophisticated data extortion campaigns. #Lapsus$ #ScatteredSpider #ShinyHunters
Keypoints
- The Trinity of Chaos group has shifted from data theft to active ransomware operations targeting large corporations.
- The group has publicly listed 39 companies on its Tor-based Data Leak Site, demanding ransom by October 10, 2025.
- The leaked data includes PII, business records, and sensitive information from airlines, tech giants, and government agencies.
- Major breaches involved OAuth token abuse and Salesforce exploitation, leading to large-scale data exfiltration.
- The leak and potential misuse of 1.5 billion records could significantly fuel AI-driven cybercrime and targeted attacks.