Canada Goose said a recently published dataset claimed by the ShinyHunters group appears to be a historical customer transactions file and not the result of a breach of its systems. The company is reviewing the data and reports no evidence of unmasked financial information, while ShinyHunters has continued high-profile campaigns using vishing and credential-harvesting tactics to extort universities and corporate targets. #ShinyHunters #CanadaGoose
Keypoints
- ShinyHunters claimed to have stolen more than 600,000 Canada Goose customer records.
- Canada Goose says the dataset is historical and has found no indication of a breach of its systems.
- The company reports no evidence that unmasked financial data was involved.
- Google and others link ShinyHunters to vishing and victim‑branded credential‑harvesting targeting SSO and MFA.
- ShinyHunters has also claimed breaches at Harvard and the University of Pennsylvania and used compromised accounts for phishing and extortion.
Read More: https://therecord.media/canada-goose-says-leaked-customer-data-was-not-from-company