Hackers stole personal information from over 183,000 people after breaching 7-Eleven systems in April. The ShinyHunters extortion gang is behind the attack, according to breach notification service Have I Been Pwned.
The convenience store chain fell victim to the ShinyHunters extortion gang, which accessed customer data during an April breach. The stolen information affects 185,000 individuals across 7-Eleven's operations.
Have I Been Pwned, a data breach tracking service, confirmed the breach and identified ShinyHunters as the responsible threat group. The gang is known for stealing data and demanding payment in exchange for non-disclosure, a tactic typical of extortion-focused cybercriminals.
7-Eleven has not yet publicly disclosed what specific types of personal information were compromised. Standard data breach exposures typically include names, email addresses, phone numbers, and potentially payment or account information.
This breach adds to an ongoing pattern of retail and convenience store chains becoming targets for cybercriminals. Large retailers maintain extensive customer databases, making them high-value targets for attackers seeking both ransom payments and resale opportunities on dark web markets.
Affected individuals should monitor their accounts and credit reports for suspicious activity. 7-Eleven customers are advised to change passwords and enable two-factor authentication where available. Watchfulness for phishing emails or calls claiming to represent the company is also recommended, as attackers sometimes use breaches to conduct follow-up social engineering attacks.
The company has not announced what security measures led to the breach or what steps it is taking to prevent future incidents. Customers can check if their information was included in the breach by visiting Have I Been Pwned's search tool with their email address.
U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.
Tailscale disclosed a critical vulnerability in its SSH implementation that allowed attackers to gain root access through insecure argument handling. The flaw has been patched in recent versions.
A new study found that social media platforms referred over 5.7 million visits to nonconsensual deepfake pornography sites between December 2025 and March 2026, with YouTube and X accounting for the majority of traffic.