Charter Communications Hit by ShinyHunters Phishing Attack, Faces Class-Action Lawsuits
Cybercriminal group ShinyHunters claimed responsibility for a phishing attack targeting a Charter Communications employee’s Microsoft Entra account, resulting in the theft of customer proprietary network information, email addresses, and phone numbers. The breach was disclosed in a complaint filed in the U.S. District Court for the District of Connecticut on Thursday, though Charter parent company of Spectrum previously stated that no sensitive personal data was compromised.
The incident has sparked class-action lawsuits from residents of Texas and North Carolina, who allege negligence by the telecommunications provider. The lawsuits, filed in federal court, follow Charter’s acknowledgment of the breach, which was first reported by Bloomberg Law.
The attack highlights ongoing risks of phishing-based credential theft, particularly in enterprise environments relying on cloud-based identity systems. While Charter maintains that the breach did not expose highly sensitive data, the legal fallout underscores the growing scrutiny of corporate cybersecurity practices in the wake of high-profile breaches.
Charter Communications cybersecurity rating report: https://www.rankiteo.com/company/charter-communications
"id": "CHA1780079551",
"linkid": "charter-communications",
"type": "Cyber Attack",
"date": "5/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Telecommunications',
'location': 'United States',
'name': 'Charter Communications (Spectrum)',
'type': 'Telecommunications Provider'}],
'attack_vector': 'Phishing',
'data_breach': {'data_exfiltration': 'Yes',
'personally_identifiable_information': 'Email addresses, '
'phone numbers',
'sensitivity_of_data': 'Non-sensitive personal data (per '
'Charter)',
'type_of_data_compromised': ['Customer proprietary network '
'information',
'Email addresses',
'Phone numbers']},
'description': 'Cybercriminal group ShinyHunters claimed responsibility for a '
'phishing attack targeting a Charter Communications employee’s '
'Microsoft Entra account, resulting in the theft of customer '
'proprietary network information, email addresses, and phone '
'numbers. The breach has sparked class-action lawsuits from '
'residents of Texas and North Carolina, alleging negligence by '
'the telecommunications provider.',
'impact': {'brand_reputation_impact': 'Yes',
'data_compromised': 'Customer proprietary network information, '
'email addresses, phone numbers',
'legal_liabilities': 'Class-action lawsuits',
'systems_affected': 'Microsoft Entra account'},
'initial_access_broker': {'entry_point': 'Microsoft Entra account via '
'phishing'},
'references': [{'source': 'Bloomberg Law'},
{'source': 'U.S. District Court for the District of '
'Connecticut'}],
'regulatory_compliance': {'legal_actions': 'Class-action lawsuits (Texas and '
'North Carolina)'},
'threat_actor': 'ShinyHunters',
'title': 'Charter Communications Hit by ShinyHunters Phishing Attack',
'type': 'Phishing Attack',
'vulnerability_exploited': 'Credential theft via Microsoft Entra account'}