THE ShinyHunters ransomware group has claimed the theft of data affecting 10 million records from the Match Group and 14 million records from Panera Bread, although Match Group says it is investigating a cyber incident and Panera confirms an incident and has alerted authorities.
The Match Group, which operates dating services such as Tinder, Match[.]com, Meetic, OkCupid, and Hinge, has stated there is no evidence that logins, financial data, or private chats were stolen, but PII and tracking data for some users are in scope. Panera Bread has said the data involved is contact information. ShinyHunters appears to be gaining access through Single-Sign-On platforms and using voice-cloning techniques, a method linked to breaches across different companies according to the article.
The piece notes that ShinyHunters also breached Bumblr, Carmax, and Edmunds among others, illustrating a broader pattern of activity. It also discusses potential personal impacts for users whose dating-app data may be exposed, though Panera emphasises no indication that login credentials, financial information, or private communications were accessed.