152/69 Tuesday, March 17, 2026
Canadian telecommunications giant Telus has disclosed that its subsidiary, Telus Digital, experienced an unauthorized system intrusion, allowing threat actors to access internal systems for a period of time. The incident was made public on March 12, 2026, and the company is currently investigating the full impact of the breach. While Telus has not officially confirmed the volume of stolen data, the cybercriminal group ShinyHunters has claimed responsibility, alleging that at least 700 terabytes-and possibly up to 1 petabyte-of data was exfiltrated. This represents an enormous volume of information, roughly equivalent to one million high-definition movies.
In its statement, Telus emphasized that its core operations remain unaffected, with no evidence that telecommunications services or customer network connectivity have been disrupted. However, the company has not yet provided detailed information about the types of data accessed. Samples of the leaked data reviewed by Reuters suggest that it may include customer service call recordings, internal software source code, and employee information, such as names and background check results. The company is currently in the process of notifying customers who may have been impacted.
The ShinyHunters group is known for targeting large organizations worldwide. In October 2025, the group was linked to breaches affecting more than 39 companies, exposing nearly one billion records. In early 2026, the group also leaked data from organizations such as SoundCloud, Crunchbase, and Odido. More recently, the group claimed to have compromised data from approximately 400 organizations through attacks targeting misconfigured Salesforce Experience Cloud environments, exploiting overly permissive guest user access to retrieve CRM data without authentication. These incidents highlight a growing trend of exploiting misconfigured systems and leveraging stolen data as a tool for extortion and ransom demands against victim organizations.
Source https://hackread.com/shinyhunters-1-petabyte-data-breach-telus-digital/