Pierluigi Paganini
January 26, 2026
Crunchbase confirmed a data breach after the cybercriminal group ShinyHunters claimed to steal over 2 million personal records from its systems.
The group leaked a 402 MB compressed archive on their website due to a failed extortion attempt.
The company states that operations weren’t affected and that the security breach is now contained. Crunchbase notified federal authorities and is investigating the incident with the help of external experts. The company is reviewing the exposed data to determine if any legal notifications are needed.
“Crunchbase detected a cybersecurity incident where a threat actor exfiltrated certain documents from our corporate network. No business operations have been disrupted by this incident. We have contained the incident and our systems are secure,” Crunchbase told SecurityWeek.
“Upon detecting the incident we engaged cybersecurity experts to assist us and we contacted federal law enforcement. Crunchbase is aware that the threat actor posted certain information online. As part of our incident response procedures we are reviewing the impacted information to determine if any notifications are required consistent with applicable legal requirements,”.
The ShinyHunters group recently resumed its Tor data leak site listing breaches at SoundCloud, Betterment, and Crunchbase. Both companies had previously confirmed data breaches.
ShinyHunters is a financially motivated cybercrime group active since 2020. It steals large volumes of personal and corporate data from major companies, then sells or leaks it on underground forums if ransom demands aren’t met. The group uses compromised credentials, cloud services, and social engineering, claiming responsibility for breaches of millions of records from platforms like Tokopedia and other high-profile targets.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, ShinyHunters)
Data Breach / January 25, 2026
