Major Ransomware Campaign Targets 40+ Firms Across Retail, Insurance, and Hospitality Sectors A large-scale ransomware attack has compromised over 40 organizations in the retail, insurance, and hospitality industries, including high-profile companies such as Carnival, Pitney Bowes, Hallmark, and Zara. The incident, classified as a "major" cybersecurity event by the FBI, underscores the growing threat of ransomware in an era of increasingly complex IT infrastructures. The attack highlights vulnerabilities in sectors handling sensitive customer data, with recent breaches in Europe such as the Venice breach, Basic-Fit data exposure, and an Inditex incident further demonstrating the rising frequency of cyber incidents. U.S. agencies have also issued warnings about PLC attacks, while Microsoft phishing campaigns and an actively exploited Google Chrome zero-day add to the escalating threat landscape. The incident serves as a reminder that traditional backup strategies alone are insufficient against modern cyber threats, as attackers increasingly target critical systems beyond data storage. Security experts emphasize the role of Security Information and Event Management (SIEM) systems in enabling proactive threat detection and response, helping organizations identify and mitigate risks before they escalate.

Pitney Bowes Hit by ShinyHunters Data Breach: 8.2M Email Addresses Leaked Last week, the hacking group ShinyHunters claimed Pitney Bowes as a victim in an extortion attack, later publicly dumping 8.2 million email addresses tied to the breach. The exposed data also included names, physical addresses, phone numbers, and employee job titles, raising concerns over identity theft and targeted phishing risks. According to analysis, 53% of the leaked email addresses were already linked to LinkedIn profiles, suggesting overlap with professional networks. The breach highlights the growing threat of double-extortion tactics, where attackers first demand ransom before releasing stolen data. Pitney Bowes, a global shipping and mailing solutions provider, has not publicly confirmed the full scope of the incident, but the leak underscores the persistent risks of third-party data exposure in corporate environments. The incident follows previous cybersecurity incidents involving the company, reinforcing the need for heightened monitoring of supply chain vulnerabilities.

Carnival Corporation Investigates Alleged Data Breach by ShinyHunters Extortion Group Carnival Corporation, the global cruise operator behind brands like Carnival Cruise Line, Princess Cruises, and Holland America Line, is probing a potential data breach after the ShinyHunters extortion group claimed to have stolen over 8.7 million records containing personally identifiable information (PII) and internal corporate data. On April 18, ShinyHunters listed Carnival on its "pay or leak" portal, threatening to release the data publicly if demands were not met by April 21, 2026. The group, known for high-profile breaches, typically gains access through phishing, credential theft, or cloud service exploitation. Carnival confirmed detecting suspicious activity linked to a phishing incident affecting a single user account. In a statement, the company acknowledged the breach, stating it had blocked unauthorized access and was working with security experts to assess the scope. While the investigation is ongoing, Carnival has not confirmed whether customer data was compromised. ShinyHunters’ claims remain unverified, but even limited account access could lead to significant exposure if linked to internal systems or cloud-based tools. Carnival, which serves millions of passengers annually, remains a prime target for cybercriminals seeking financial leverage through extortion. The incident underscores the rising threat of phishing-driven breaches in enterprise environments.

Package and mail delivery giant Pitney Bowes had suffered a second ransomware attack in the past seven months. A ransomware gang known as Maze published a blog post claiming to have breached and encrypted the company's network. The Maze crew provided proof of access in the form of 11 screenshots portraying directory listings from inside the company's computer network. Being the victim of a human-operated ransomware gang is bad enough, but getting hit by two different gangs raised serious questions on them.

The Shipping tech giant Pitney Bowes has confirmed in a statement that its systems were hit by a “malware attack that encrypted information” on its systems. The company has seen no evidence that customer or employee data has been improperly accessed. But many of its internal systems are offline, causing disruption to client services and other corporate processes. The company said it’s working with a third-party consultant to address the issue. But it’s not immediately known what kind of ransomware encrypted its systems.