Shiny Hunters Claims Attacks on Vimeo and Carnival Corporation

The ransomware group Shiny Hunters has claimed responsibility for attacks on video platform Vimeo and cruise operator Carnival Corporation, with a ransom deadline set for April 30, 2026. Vimeo said its internal incident response teams and an external forensic cybersecurity firm are investigating the claims. The company confirmed it does not intend to pay the ransom and stated that critical data including video content, payment information, and user login credentials remain uncompromised. According to information on a Telegram channel linked to Shiny Hunters, the Vimeo breach may have originated through un Meanwhile, Shiny Hunters also claimed to have breached Carnival Corporation, saying the attack exposed data belonging to approximately 8.7 million customers. The group said compromised information included names, email addresses, contact details, and dates of birth. Carnival responded that the attack stemmed from the compromise of a single user account and that the situation has been brought under control. The company said it has strengthened access controls, enhanced monitoring, and conducted a security review. Shiny Hunters has been particularly active since February 2025, reportedly focusing on organizations connected to Salesforce environments. Both Vimeo and Carnival are believed to fall within this broader targeting pattern, highlighting potential risks associated with third-party integrations and cloud-based services.