KODAK has confirmed a data breach linked to the ShinyHunters extortion group, which claims to have stolen over 2.2 million records including customer personal information and internal corporate data according to a statement released on June 18 2026. The attackers threatened to publish the data unless Kodak met their demands by the same day, prompting an immediate response from the company’s security team.
The method used to gain access remains unknown, though investigators suspect social engineering or the exploitation of a previously unidentified vulnerability as noted in early analysis. No CVE identifiers have been associated with the incident, and Kodak has not disclosed whether any software flaw was leveraged.
Kodak said the breach has been contained and poses no ongoing threat to its operations. The firm engaged external cybersecurity specialists and notified law enforcement agencies to assist with the investigation. Internal monitoring shows no signs of further unauthorised access at this time.
ShinyHunters has been active in recent months targeting a range of organisations with similar extortion tactics, often claiming large data thefts to pressure victims into payment. Security researchers note that the group tends to rely on phishing campaigns and credential stuffing rather than complex zero‑day exploits, although the exact vector in this case is still under review.
For individuals whose data may have been exposed, experts recommend changing passwords on any Kodak‑related accounts and enabling multi‑factor authentication wherever possible. Users should also monitor financial statements for unusual activity and consider enrolling in credit monitoring services to detect potential identity theft.
The investigation continues as Kodak works with authorities to trace the attackers and secure any remaining vulnerabilities. No further details have been released, and the company will provide updates as the situation develops.