Charter confirms data breach after ShinyHunters extortion threat

Charter Communications was listed on the ShinyHunters leak site after the extortion group claimed a vishing attack compromised a Microsoft Entra account and exported roughly 40 million consumer and business records from Charter's Salesforce instance; Charter says no sensitive PI or CPNI was exfiltrated. The report links the incident to ShinyHunters' wider social-engineering campaign targeting SSO accounts to access connected SaaS applications and extort organizations by threatening to publish stolen data.