Blog

Engie Resources appears in a 2025 Salesforce extortion wave tied to Scattered LAPSUS$ Hunters / ShinyHunters. leaksear.ch indexed 261,531 records with names, addresses, phone numbers, emails and Salesforce account metadata.

leaksear.ch has indexed a Gap Inc. Salesforce customer dataset containing 223,110 records. Exposed data includes names, emails, phones, addresses, dates of birth, loyalty fields, and internal Salesforce identifiers.

A Fujifilm dataset indexed by leaksear.ch contains 222,058 Salesforce account records with names, emails, phones, addresses, and CRM metadata. Public reporting ties Fujifilm to the Scattered Lapsus$ Hunters/ShinyHunters leak wave targeting Salesforce customer environments.

A ShinyHunters leak tied to Alert 360 has been indexed by leaksear.ch with 146,153 records, including contact details and security-system metadata. Alert 360 says the April 4 incident exposed names, emails, phone numbers, and mailing addresses but not SSNs, payment data, alarm codes, or system credentials.

ADT disclosed unauthorized access to cloud environments after an April 20, 2026 incident later claimed by ShinyHunters. The leaksear.ch index covers 8.66M customer, lead, and support-case records, while Have I Been Pwned lists 5.5M unique email addresses.

Aman Resorts CRM data indexed by leaksear.ch contains 283,251 records from an April 2026 breach. Public reporting ties the exposure to a ShinyHunters pay-or-leak campaign involving Salesforce CRM data, with emails, names, addresses, phones, dates of birth, nationalities, and VIP status in scope.

B1ack's Stash, a dark-web carding marketplace, released roughly 4.6 million stolen credit card records for free on May 18, 2026. leaksear.ch has indexed 4,162,208 of the entries, each pairing full card details with the cardholder's name, billing address, email, phone and source IP.