ShinyHunters Gang Leaks Data of 4.9 Million Charter Communications Customers
AI-generated from multiple sources. Verify before acting on this reporting.
NEW YORK — The ShinyHunters extortion gang has publicly released personal information belonging to 4.9 million Charter Communications accounts after the telecommunications provider refused to pay a ransom demand, officials confirmed Wednesday.
The cyberattack, which targeted the largest cable provider in the United States, resulted in the theft of sensitive customer data. The group posted the stolen information on a dark web forum late Tuesday, marking the culmination of a weeks-long negotiation that ended without a financial settlement. Charter Communications, which operates under the brands Spectrum, Suddenlink, and Mediacom, stated it is currently assessing the scope of the breach and working with federal authorities.
The stolen data includes names, email addresses, phone numbers, and physical addresses for affected subscribers. In some cases, the leak also contained account credentials and billing information. The ShinyHunters group, known for targeting large corporations and demanding cryptocurrency payments, claimed to have infiltrated Charter's internal systems in early May. The gang demanded an undisclosed sum to prevent the release of the data, a tactic common in modern ransomware operations.
Charter Communications declined to comment on the specific amount requested or the details of the negotiation process. The company issued a brief statement acknowledging the incident and advising customers to monitor their accounts for suspicious activity. "We take the security of our customers' data seriously and are committed to protecting their privacy," the statement read. "We are cooperating fully with law enforcement agencies to investigate this matter."
Federal authorities, including the FBI and the Cybersecurity and Infrastructure Security Agency (CISA), have opened an investigation into the breach. Officials are working to determine the full extent of the compromise and whether any other entities were affected. The incident highlights the growing threat of cyber extortion against critical infrastructure providers in the United States.
The leak has raised concerns among privacy advocates and cybersecurity experts about the vulnerability of consumer data held by major telecommunications firms. Charter Communications serves millions of households across the country, providing internet, television, and telephone services. The breach affects customers in multiple states, though the company has not yet specified which regions were most heavily impacted.
Charter Communications has not confirmed whether any financial transactions were attempted or if the stolen data was used for fraudulent activities. The company is expected to notify affected customers in the coming days, as required by state data breach notification laws. Legal experts suggest that the incident could lead to regulatory scrutiny and potential litigation.
As of Wednesday afternoon, the stolen data remained accessible on the dark web platform where it was initially posted. The ShinyHunters group has not issued further statements regarding the incident. Law enforcement officials have not announced any arrests or identified the individuals behind the attack. The investigation remains active, and additional details are expected to emerge in the coming weeks.