--- title: "ShinyHunters allegedly drove off with 1.7M CarGurus records" type: "News" locale: "zh-HK" url: "https://longbridge.com/zh-HK/news/276268713.md" description: "CarGurus reportedly experienced a data breach involving the theft of 1.7 million corporate records by the cybercrime group ShinyHunters. The group has threatened to leak the data, which includes personally identifiable information, unless contacted by February 20, 2026. This incident is part of a series of breaches claimed by ShinyHunters this year, affecting various companies, including investment firms and other online platforms. CarGurus has not yet responded to inquiries regarding the breach." datetime: "2026-02-18T20:46:52.000Z" locales: - [zh-CN](https://longbridge.com/zh-CN/news/276268713.md) - [en](https://longbridge.com/en/news/276268713.md) - [zh-HK](https://longbridge.com/zh-HK/news/276268713.md) --- > 支持的語言: [简体中文](https://longbridge.com/zh-CN/news/276268713.md) | [English](https://longbridge.com/en/news/276268713.md) # ShinyHunters allegedly drove off with 1.7M CarGurus records CarGurus allegedly suffered a data breach with 1.7 million corporate records stolen, according to a notorious cybercrime crew that posted the online vehicle marketplace on its leak site on Wednesday. "This is a final warning to reach out by 20 Feb 2026 before we leak along with several annoying (digital) problems that'll come your way," ShinyHunters wrote in its announcement, seen by _The Register_ and shared on social media. The digital crooks claimed the compromised files included personally identifiable information and "other internal corporate data." CarGurus did not immediately respond to _The Register_'s inquiries. We will update this story when we hear back from the company. We also reached out to ShinyHunters to find out when and how they breached the car shopping site, but did not receive an immediate response. The Wednesday posts cap a string of 15 breaches claimed by ShinyHunters and Scattered Lapsus$ Hunters since the beginning of the year, including penetrating two investment advisory firms, Mercer Advisors and Beacon Pointe Advisors, listed on Sunday. The extortionists set a Wednesday deadline for both companies to negotiate and threatened to leak 5 million records from Mercer and 100,000 from Beacon Pointe. Neither firm has posted a breach notification, and they did not respond to _The Register_'s requests for comment. At least one of the companies allegedly breached by ShinyHunters and posted to its leak site in February has said the compromise is from an old raid. On Monday, Canada Goose told us that it was "aware that a historical dataset relating to past customer transactions has recently been published online." The down-filled jacket purveyor, however, declined to say how old the data is or how it was originally stolen. Blockchain lending firm Figure Technology Solutions was also listed on ShinyHunters' leak site last week, and according to Have I Been Pwned, the criminals stole nearly 1 million customers' records. A Figure spokesperson told us that "an employee was socially engineered, and that allowed an actor to download a limited number of files through their account." - Canada Goose ruffles feathers over 600K record dump, says leak is old news - Betterment breach may expose 1.4M users after social engineering attack - ShinyHunters swipes right on 10M records in alleged dating app data grab - Let them eat sourdough: ShinyHunters claims Panera Bread as stolen credentials victim "We acted quickly to block the activity and retained a forensic firm to investigate what files were affected," the spokesperson's statement, sent via email, continued. "We understand the importance of these matters and are communicating with partners and those impacted as appropriate." The company also said it is adding "safeguards and training" to boost its digital defenses, and offering free credit monitoring to all affected individuals. Other recent victims include investment platform Betterment, Match Group (with dating sites Hinge, Match.com, and OkCupid compromised during the intrusion), Panera Bread, and car buying and review sites Carvana and Edmunds. ShinyHunters previously told _The Register_ that it gained access to Betterment's systems by voice phishing its Okta single sign-on (SSO) codes, and Panera via a Microsoft Entra SSO code. The criminals' spokesperson said the CarMax and Edmunds breaches were from earlier, unrelated intrusions. ® ### 相關股票 - [CarGurus (CARG.US)](https://longbridge.com/zh-HK/quote/CARG.US.md) ## 相關資訊與研究 - [CarGurus (NASDAQ:CARG) Insider Sells $88,989.39 in Stock](https://longbridge.com/zh-HK/news/281582412.md) - [CarGurus data breach affects 12.5 million accounts](https://longbridge.com/zh-HK/news/276790462.md) - [Varia US Properties Sets 2026 AGM to Confirm Governance and Strategy](https://longbridge.com/zh-HK/news/281470115.md) - [China's Online Retail Sales Rises 9%](https://longbridge.com/zh-HK/news/280567029.md) - [Antero Midstream Updates Web-Based Investor Presentation Disclosure](https://longbridge.com/zh-HK/news/281428094.md)