ShinyHunters Leaks Data of ~400K BCD Travel Customers
ShinyHunters published personal information of approximately 396,000 BCD Travel customers after failed ransom negotiations. The leaked data includes names, emails, phone numbers, addresses, job titles, and support tickets from Salesforce and SharePoint records. The extortion campaign was first claimed in late May 2026.
- names
- emails
- phone numbers
- addresses
- job titles
- support tickets
ShinyHunters has published the personal information of roughly 396,000 BCD Travel customers after ransom negotiations broke down.
According to public reporting, the data appeared online in early June 2026 following an extortion campaign that began in late May. The exposed records, drawn from Salesforce and SharePoint systems, contain names, email addresses, phone numbers, physical addresses, job titles, and support ticket details. Cybernews first reported the incident, and the breach has since been catalogued by Have I Been Pwned. BCD Travel, a global corporate travel management company, confirmed the leak involved customer data obtained during the attackers’ access to internal systems.
Want the rest of this breakdown?
Sign up free to keep reading. Members get extended access, the weekly breach digest, and a complimentary Warden™ to see if their identity is exposed in the breaches we cover.
A breach leaks your credentials. Then hackers chain those credentials to your address, family, phone, and employer using public broker sites. We’re the only tool built around that chain.
⚠ Were you in this breach?
Free email scanner. We check your address against 15.4B+ leaked records in 15 seconds — then show you the $19 cleanup that removes you from the broker sites aggregating leaked data.
Check my email — free →