Checkout.com was breached by the ShinyHunters group through a compromised legacy cloud storage system, leading to data exfiltration of sensitive merchant information. The company refused to pay a ransom and is enhancing its security, donating the ransom amount to cybersecurity research centers. #ShinyHunters #Checkoutcom #LegacySystem
Keypoints
- ShinyHunters gained unauthorized access to Checkout.com’s legacy cloud storage system.
- The breach affected merchant data from 2020 and earlier, impacting less than 25% of current merchants.
- Checkout.com has publicly refused to pay the ransom and plans to fund cybersecurity research instead.
- The threat group ShinyHunters is known for breaching large organizations and demanding ransoms.
- The company is strengthening its security measures to prevent future breaches.