1. Forum
  2. tqwNet
  3. TQW GENTECH

  • Aura breach confirmed as over 900,000 customer records accessed i

    From TechnologyDaily@1337:1/100 to All on Thursday, March 19, 2026 16:30:32
    Aura breach confirmed as over 900,000 customer records accessed in phishing attack

    Date:
    Thu, 19 Mar 2026 16:25:00 +0000

    Description:
    Around 20,000 current, and 15,000 former customers affected

    FULL STORY ======================================================================Copy link Facebook X Whatsapp Reddit Pinterest Flipboard Threads Email Share this article 0 Join the conversation Follow us Add us as a preferred source on Google Newsletter Tech Radar Get the TechRadar Newsletter Sign up for
    breaking news, reviews, opinion, top tech deals, and more. Contact me with news and offers from other Future brands Receive email from us on behalf of our trusted partners or sponsors By submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over. You are
    now subscribed Your newsletter sign-up was successful An account already exists for this email address, please log in. Subscribe to our newsletter
    Aura confirms breach exposing ~900,000 customer records Attack stemmed from phone phishing; names and emails stolen, but no SSNs or financial data ShinyHunters claim responsibility, add Aura to extortion site after failed ransom talks Digital security company Aura confirmed suffering a cyberattack and losing almost a million customer records.

    In an announcement published on its website earlier this week, the identity protection firm said that one of its employees was recently targeted with a phone phishing attack. The threat actor gained access to that employees account for roughly one hour and during that time managed to exfiltrate roughly 900,000 records. Article continues below You may like ShinyHunters claims it's behind ongoing Salesforce Aura data theft assault, warns more attacks to come Top ad tech firm Optimizely hit by data breach - around
    10,000 companies possibly affected Blockchain fintech giant Figure hit by
    data breach, says 'limited number of files' impacted ShinyHunters takes the blame Aura says that the records belong to both active (up to 20,000), and former Aura customers (no more than 15,000), and include names and email addresses.

    They were pulled from a marketing tool used by a company that Aura bought in 2021. Social Security numbers, passwords, and financial information were not compromised.

    Auras systems have been purpose-built to limit the potential exposure of customer information in the event of a breach, including organizational, technical, and physical safeguards that worked as designed in this incident, the announcement reads. All sensitive customer personal information (Social Security numbers, financial transactions, credit files, payment details, credentials) is encrypted and access is highly restricted.

    The company said it is now notifying impacted customers as appropriate and does not expect the attack to escalate further. Are you a pro? Subscribe to our newsletter Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed! Contact me with news and offers from other Future brands Receive email from us on behalf of our trusted partners or sponsors By submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

    While Aura did not discuss the attackers or their goals, BleepingComputer found out that ShinyHunters already claimed responsibility for the breach. Apparently, the group added Aura to its data extortion site, claiming to have nabbed 12GB of files with customer personally identifiable information (PII) and other corporate data.

    ShinyHunters is a highly active ransomware threat actor, among the first ones to stop using an encryptor and focus solely on data exfiltration. They said they failed to reach an agreement with Aura, meaning they demanded a ransom payment in exchange for deleting the stolen files.

    We dont know how much money ShinyHunters demanded. What to read next Top investment platform hit in data breach - over 1.4 million Betterment accounts exposed Betterment confirms data breach, tells customers to beware crypto
    scam notifications Ericsson US reveals employee and customer data breach
    after third-party hack

    TechRadarPro contacted Aura for comment, and the company provided a link to a statement, which reads, "As our investigation into this security incident has progressed, we can confirm that no database supporting the Aura identity
    theft protection application was accessed in any way. No sensitive
    information provided by customers to Aura for monitoring purposes such as Social Security numbers, financial information, credit records, or passwords was compromised." "There is no ongoing risk to customer data, and Auras services remain safe to use," the statement said.

    Via BleepingComputer The best antivirus for all budgets Our top picks, based on real-world testing and comparisons

    Read our full guide to the best antivirus 1. Best overall: Bitdefender Total Security 2. Best for families: Norton 360 with LifeLock 3. Best for mobile: McAfee Mobile Security Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

    And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/aura-breach-confirmed-as-over-900-000-c ustomer-records-accessed-in-phishing-attack


    --- Mystic BBS v1.12 A49 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)