Skip to content
Auto-CTI
Back to all actors

ShinyHunters

Cybercrime Financial Active
Mentions
2
First seen
29 Jun 2026
Last seen
13 Jul 2026

Relevant to you · Relevant

Threat focus:
industrial / ot espionage
Sector / region:
Manufacturing

Origin

Unattributed

Sources

inferred Confidence medium

Profile

ShinyHunters is a threat actor group known for abusing OAuth in SaaS-based applications. Recent reports highlight the need to defend SaaS applications against such attacks. The group targets cloud services. No specific malware details are evident from the provided headlines.

Affected vendors

LinuxSalesforceSalesloftGainsight

Targeted sectors

SaaSCloud services

Activity (8 weeks)

22
23
24
25
26
27
28
29

Recent activity

ESC