Telus Investigates Cybersecurity Breach Linked to ShinyHunters Extortion Group
Canadian telecommunications giant Telus Corp. is probing a cybersecurity incident involving unauthorized access to a limited number of its systems. The company confirmed the breach in a statement, noting that immediate steps were taken to contain the intrusion and secure affected systems. Telus is actively monitoring the situation and has begun notifying impacted customers.
The breach was claimed by ShinyHunters, an extortion group that contacted Bloomberg News this week, alleging they stole a large volume of data from Telus in a supply chain attack in August. The group claimed to have sent a ransom note in February, demanding payment in Bitcoin though the exact amount was redacted. According to ShinyHunters, the exposed data includes information belonging to Telus’ customers, which span technology companies and banks.
Telus, one of Canada’s largest mobile and broadband providers, stated it is collaborating with law enforcement and cyber forensics experts while maintaining that business operations remain unaffected. There is no evidence of disruption to connectivity or services. The company did not directly address ShinyHunters’ claims or name the group in its response.
Following the news, Telus shares dipped 0.6%, trading at C$17.93 in Toronto. The incident underscores growing risks in third-party supply chain attacks targeting major telecommunications providers.
Source: https://www.insurancejournal.com/news/international/2026/03/13/861816.htm
TELUS cybersecurity rating report: https://www.rankiteo.com/company/telus
"id": "TEL1773405027",
"linkid": "telus",
"type": "Breach",
"date": "8/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Customers of technology '
'companies and banks',
'industry': 'Telecommunications, Mobile and Broadband '
'Services',
'location': 'Canada',
'name': 'Telus Corp.',
'size': 'Large',
'type': 'Telecommunications'}],
'attack_vector': 'Supply Chain Attack',
'customer_advisories': 'Notifying impacted customers',
'data_breach': {'data_exfiltration': 'Alleged by ShinyHunters',
'type_of_data_compromised': 'Customer information'},
'description': 'Canadian telecommunications giant Telus Corp. is '
'investigating a cybersecurity incident involving unauthorized '
'access to a limited number of its systems. The breach was '
'claimed by the ShinyHunters extortion group, which alleges '
'they stole a large volume of data in a supply chain attack in '
'August. Telus confirmed the breach and is notifying impacted '
'customers.',
'impact': {'brand_reputation_impact': 'Underscores growing risks in '
'third-party supply chain attacks',
'data_compromised': 'Large volume of data, including customer '
'information',
'operational_impact': 'No disruption to connectivity or services',
'revenue_loss': 'Shares dipped 0.6% (C$17.93)',
'systems_affected': 'Limited number of systems'},
'investigation_status': 'Ongoing',
'motivation': 'Extortion, Financial Gain',
'ransomware': {'data_exfiltration': 'Alleged by ShinyHunters',
'ransom_demanded': 'Yes (amount redacted, demanded in '
'Bitcoin)'},
'references': [{'source': 'Bloomberg News'}],
'response': {'communication_strategy': 'Notifying impacted customers',
'containment_measures': 'Immediate steps to contain the '
'intrusion and secure affected systems',
'enhanced_monitoring': 'Actively monitoring the situation',
'incident_response_plan_activated': 'Yes',
'law_enforcement_notified': 'Yes',
'third_party_assistance': 'Cyber forensics experts'},
'threat_actor': 'ShinyHunters',
'title': 'Telus Cybersecurity Breach Linked to ShinyHunters Extortion Group',
'type': 'Data Breach, Extortion'}