Kemper Corporation Hit by ShinyHunters Data Breach, Exposing Sensitive Information
On April 15, 2026, the hacker group ShinyHunters leaked 29 GB of alleged Kemper Corporation data on the dark web, claiming the files were stolen from the company’s Salesforce account. Kemper Corporation, a leading U.S. insurer with $12 billion in assets, confirmed the cybersecurity incident and has launched an internal investigation while notifying law enforcement.
The exposed data may include internal corporate documents, employee training materials, names, email addresses, and Stripe payment logs containing customer names and transaction details. Individuals who received breach notifications from Kemper face heightened risks of identity theft and fraud.
National class action firm Edelson Lechtzin LLP is investigating potential legal claims on behalf of affected individuals. Kemper provides insurance services through its Kemper Auto and Kemper Life brands, serving individuals, families, and businesses. The full scope of the breach and its impact remain under review.
Kemper cybersecurity rating report: https://www.rankiteo.com/company/kemperinsurance
"id": "KEM1776831908",
"linkid": "kemperinsurance",
"type": "Breach",
"date": "4/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Insurance',
'location': 'U.S.',
'name': 'Kemper Corporation',
'size': 'Large ($12 billion in assets)',
'type': 'Insurance Company'}],
'attack_vector': 'Salesforce account compromise',
'customer_advisories': 'Breach notifications sent to affected individuals',
'data_breach': {'data_exfiltration': 'Yes',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Internal corporate documents',
'Employee training materials',
'Names',
'Email addresses',
'Stripe payment logs (customer '
'names and transaction '
'details)']},
'date_detected': '2026-04-15',
'date_publicly_disclosed': '2026-04-15',
'description': 'On April 15, 2026, the hacker group ShinyHunters leaked 29 GB '
'of alleged Kemper Corporation data on the dark web, claiming '
'the files were stolen from the company’s Salesforce account. '
'The exposed data may include internal corporate documents, '
'employee training materials, names, email addresses, and '
'Stripe payment logs containing customer names and transaction '
'details. Individuals who received breach notifications from '
'Kemper face heightened risks of identity theft and fraud.',
'impact': {'brand_reputation_impact': 'Heightened risks of identity theft and '
'fraud',
'data_compromised': '29 GB of data',
'identity_theft_risk': 'High',
'legal_liabilities': 'Potential class action investigation',
'payment_information_risk': 'High',
'systems_affected': 'Salesforce account'},
'initial_access_broker': {'data_sold_on_dark_web': 'Yes',
'entry_point': 'Salesforce account'},
'investigation_status': 'Ongoing',
'motivation': 'Data exfiltration and dark web sale',
'references': [{'source': 'Dark web leak'}],
'regulatory_compliance': {'legal_actions': 'Potential class action '
'investigation by Edelson Lechtzin '
'LLP'},
'response': {'communication_strategy': 'Breach notifications sent to affected '
'individuals',
'incident_response_plan_activated': 'Launched internal '
'investigation',
'law_enforcement_notified': 'Yes'},
'threat_actor': 'ShinyHunters',
'title': 'Kemper Corporation Hit by ShinyHunters Data Breach, Exposing '
'Sensitive Information',
'type': 'Data Breach'}