IAM Strategy and Advisory
February 17, 2026

Crunchbase Data Breach: ShinyHunters Claims Over 2 Million Records Stolen

Crunchbase Data Breach

The cybercrime group ShinyHunters claims it accessed and leaked more than 2 million records belonging to Crunchbase after failed extortion, with the company confirming unauthorized data exfiltration from its corporate network. Reports suggest exposed information includes personal and corporate data, raising serious identity and security concerns.

Strong identity protection and proactive IAM strategies are vital to defend against evolving threat tactics that leverage social engineering and credential abuse.

Table of Content

  1. Introduction
  2. Why the Crunchbase Breach Signals Urgent Identity Security Needs
  3. From Social Engineering to Data Theft
  4. The Role of Identity in Modern Attacks

Why the Crunchbase Breach Signals Urgent Identity Security Needs

The recent breach involving market intelligence provider Crunchbase highlights a troubling trend in cybercrime: attackers are increasingly targeting identity and access layers rather than traditional systems vulnerabilities.

According to multiple reports, attackers associated with the ShinyHunters group claimed responsibility for leaking a compressed archive of more than 400 MB of files containing over 2 million records after Crunchbase declined to pay an extortion demand. The data reportedly includes personally identifiable information (PII), corporate contracts, and internal documents — all pulled from the company’s corporate network before containment. Crunchbase confirmed the incident and noted it brought in cybersecurity experts and law enforcement to investigate and secure affected systems.

From Social Engineering to Data Theft

Unlike attacks that exploit software flaws, this campaign leveraged vishing and voice phishing techniques to compromise single sign-on credentials and move laterally within corporate environments — a tactic increasingly associated with ShinyHunters and similar groups. These sophisticated social engineering attacks demonstrate that identity verification mechanisms — including MFA and SSO — are now prime targets.

The consequences of such breaches extend far beyond the immediate data loss. When personal information and internal corporate data are exposed, organisations face:

  • Long-term identity theft and fraud risks
  • Reputational and trust damage
  • Regulatory scrutiny and compliance challenges
  • Increased incident response costs

The Role of Identity in Modern Attacks

In this breach, attackers circumvented technical protections not by breaking code, but by exploiting trusted access pathways. This reflects a broader shift in threat actor behaviour: identity has become the primary attack surface. Social engineering, MFA fatigue, vishing, and credential harvesting all focus on undermining trust in authentication systems.

For organisations using cloud services, single sign-on platforms, or federated identity models, this raises critical questions:

  • Are access controls enforced adaptively based on context and risk?
  • Are there protections against credential theft beyond basic MFA?
  • How quickly can anomalous access be detected and responded to?

Without resilient identity policing and monitoring, attackers can convert access into data exfiltration and extortion opportunities.

Reference:

https://securityaffairs.com/187340/data-breach/shinyhunters-claims-2-million-crunchbase-records-company-confirms-breach.html

Continue reading
View All
View All
Cyber Security Threats
Global Brands Face ‘Pay or Leak’ Threat as ShinyHunters Escalates Ransomware Tactics
AI Security
March 31, 2026
Enabling Trusted AI Agents with Identity-First Security
Contact us

Get in touch with us

Whether you have a question, need support, or just want to learn more about Trevonix, our team is here to help.
Need help? Our support team is available 24/7 to assist you.
Interested in Trevonix for your business? Reach out to discuss pricing and solutions.
Send us a message
Tell us how we can help you.
chevron down icon
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

See It in Action

See how our approach works in real scenarios, not slides.
Book an IAM consultation to experience solutions shaped by real world use cases.
Book IAM Consultation
Book IAM Consultation

Looking for a trusted IAM partner?

Solutions By Use cases
Privileged Access ManagementWorkforce Access & Authentication SolutionsUnified IAM OfferingsSecurity & AISupply Chain & Third-Party Identity SecurityIdentity Governance & AdministrationZero Trust Identity ArchitectureIdentity for AI & NHIDevOps, API & Cloud Identity SecurityAI-Assisted IdentityDecentralised Identity & Digital WalletsDynamic Authorisation & Access Control Verified Trust & FraudCustomer & Partner Identity Management
Partners
PingIdentityOktaAuth0SaviyntSlashIDTransmit Security
Industries
Banking & Financial ServicesRetail & E-CommerceTelecommunicationsTechnology & IT ServicesEnergy & UtilitiesOther Industries We Cover
Services
Zero Trust ImplementationStaff Augmentation & Embedded Identity ExpertsIdentity Operations & Managed ServicesIAM Modernisation & Cloud MigrationApplication Onboarding & IntegrationIAM Platform ImplementationExpert Identity Services & Programme RecoveryInterim IAM LeadershipIdentity-as-a-Service Regulatory & Compliance AdvisoryIdentity Maturity AssessmentIAM Strategy & Advisory
Resources
News & EventsCase StudiesBlogs & InsightsWhitepapers & GuidesWebinars & Videos
Company
About UsCareerSuccess StoriesContact Us
Support
+44 7833396917contact@trevonix.comLondon, England
© Trevonix. 2026 | All Rights Reserved.
Terms of UsePrivacy Policy
A global leader in Identity and Access Management (IAM) consulting and managed services, Trevonix specialises in delivering cutting-edge IAM solutions across a range of industries.