Bleeping Computer has been reporting on ShinyHunters’ latest activities. Their newest reporting includes incidents involving SoundCloud and PornHub.
Audio streaming platform SoundCloud has confirmed that outages and VPN connection issues over the past few days were caused by a security breach in which threat actors stole a database exposing users’ email addresses and profile information.
The disclosure follows widespread reports over the past four days from users who were unable to access SoundCloud when connecting via VPN, with attempts resulting in the site displaying 403 “forbidden” errors.
In a statement shared with BleepingComputer, SoundCloud said it recently detected unauthorized activity involving an ancillary service dashboard and activated its incident response procedures.
[…]
SoundCloud acknowledged that a threat actor accessed some of its data but said the exposure was limited in scope.
While SoundCloud has not shared details about the threat actor behind the breach, BleepingComputer received a tip earlier today stating that the ShinyHunters extortion gang was responsible.
Read more at Bleeping Computer.