Aura Group Data Breach Exposes Nearly 1 Million Records in Phishing Attack
Shamis & Gentile P.A., a class action law firm specializing in data breach cases, is investigating a security incident at Aura Group, a U.S.-based digital security company founded in 2009. The breach occurred after an employee fell victim to a targeted phone phishing attack, allowing an unauthorized third party to access an internal account for roughly one hour.
On March 11, 2026, the threat actor ShinyHunters claimed responsibility for the breach on the dark web, initially asserting that over two million records had been compromised. Aura Group later confirmed that approximately 900,000 records were accessed, primarily consisting of names and email addresses from a marketing tool acquired in 2017. Additionally, contact information including home addresses and phone numbers was exposed for fewer than 20,000 active customers and 15,000 former customers.
Aura Group clarified that no Social Security numbers, passwords, or financial data were compromised in the incident. The company has since taken steps to secure affected systems and mitigate further risk. Legal investigations are underway, with potential compensation available for impacted individuals.
Source: https://www.claimdepot.com/investigations/aura-group-data-breach-2026
Aura REE Spain cybersecurity rating report: https://www.rankiteo.com/company/aura-ree
"id": "AUR1773865794",
"linkid": "aura-ree",
"type": "Breach",
"date": "3/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '35,000 (20,000 active + 15,000 '
'former)',
'industry': 'Digital Security',
'location': 'U.S.',
'name': 'Aura Group',
'type': 'Company'}],
'attack_vector': 'Phishing (Phone)',
'data_breach': {'number_of_records_exposed': '900,000',
'personally_identifiable_information': 'Yes (Names, contact '
'information)',
'sensitivity_of_data': 'Low to Moderate (No SSNs, passwords, '
'or financial data)',
'type_of_data_compromised': ['Names',
'Email addresses',
'Home addresses',
'Phone numbers']},
'date_publicly_disclosed': '2026-03-11',
'description': 'A security incident at Aura Group, a U.S.-based digital '
'security company, occurred after an employee fell victim to a '
'targeted phone phishing attack, allowing an unauthorized '
'third party to access an internal account for roughly one '
'hour. The breach exposed approximately 900,000 records, '
'primarily consisting of names and email addresses, along with '
'contact information for fewer than 35,000 customers.',
'impact': {'data_compromised': '900,000 records',
'legal_liabilities': 'Potential compensation for impacted '
'individuals',
'payment_information_risk': 'None',
'systems_affected': 'Internal marketing tool'},
'initial_access_broker': {'data_sold_on_dark_web': 'Claimed by ShinyHunters',
'entry_point': 'Employee account via phishing'},
'investigation_status': 'Ongoing',
'post_incident_analysis': {'root_causes': 'Targeted phone phishing attack '
'leading to unauthorized access'},
'references': [{'source': 'Shamis & Gentile P.A.'}],
'regulatory_compliance': {'legal_actions': 'Legal investigations underway'},
'response': {'containment_measures': 'Secured affected systems'},
'threat_actor': 'ShinyHunters',
'title': 'Aura Group Data Breach Exposes Nearly 1 Million Records in Phishing '
'Attack',
'type': 'Data Breach',
'vulnerability_exploited': 'Human Error (Employee Compromise)'}