Telus Digital is currently investigating a significant cyberattack carried out by the extortion group ShinyHunters, which claims to have exfiltrated nearly one petabyte of data from the company and its clients. While the business process outsourcing provider has confirmed unauthorized access to its systems, it maintains that all operations remain functional and that there is no current evidence of service disruption.

Telus Digital, a global provider of business process outsourcing services, recently confirmed that it is managing a cybersecurity breach involving unauthorized access to its internal systems. The incident was orchestrated by ShinyHunters, a notorious extortion group that has been active for several years. The company responded to the intrusion by taking immediate steps to secure its environment and has since engaged forensic experts and law enforcement to assist with a full investigation into the scope of the event.

The group responsible for the attack is well known in the security community for targeting Software as a Service platforms and using sophisticated social engineering tactics. In addition to traditional data theft, ShinyHunters has recently utilized voice phishing to trick employees into surrendering their login credentials on fraudulent websites. This specific breach is particularly concerning due to claims by the attackers that they have stolen an immense volume of data totaling approximately one petabyte.

Despite the severity of the claims made by the threat actors, Telus Digital has reported that its core business operations have not been interrupted. The company stated that customer connectivity and services remain fully operational while the internal investigation continues. To prevent further unauthorized activity, management has implemented additional security protocols intended to harden their infrastructure against future threats.

As the forensic analysis progresses, the company is focusing on identifying the specific information that may have been compromised. Telus Digital has committed to notifying any impacted customers as appropriate, noting that the security of client information remains their primary concern. Because the company handles customer support operations for numerous external organizations, the potential for third-party data exposure is a central focus of the ongoing inquiry.

The situation remains fluid as security professionals work to verify the validity of the hackers' claims regarding the volume of stolen data. For now, the company continues to monitor its systems closely while working to mitigate any long-term risks associated with the breach. This incident highlights the persistent vulnerabilities faced by major outsourcing firms that handle sensitive data for a wide variety of global brands.

Source: Telus Digital Hit by Massive Data Breach Impacting Systems and Data