Identity protection firm Aura suffers data breach exposing 900 000 records

cyberinsider.com · nalekberov · 15 days ago · view on HN · threat
0 net
Tags
apple exploit facebook google phishing
Identity protection firm Aura suffers data breach exposing 900,000 records Skip to main content Skip to after header navigation Skip to site footer Identity protection firm Aura suffers data breach exposing 900,000 records March 18, 2026 By Amar Ćemanović — Leave a Comment X LinkedIn Reddit Facebook Share Aura says a targeted voice phishing attack against one of its employees led to unauthorized access to about 900,000 records, prompting customer notifications and an incident response effort. The disclosure came after the ShinyHunters threat group advertised what it claimed was a trove of data stolen from Aura, while Have I Been Pwned (HIBP) has now added the incident to its database. According to Aura, the incident began when an employee was tricked in a targeted phone phishing attack, allowing an unauthorized third party to access the worker’s account for roughly an hour. The company said it revoked access as soon as it discovered the intrusion, activated its incident response plan, brought in outside cybersecurity and legal specialists, and notified law enforcement. Aura described the exposure as limited but acknowledged that the attacker accessed approximately 900,000 records. Aura said the overwhelming majority of the exposed records were names and email addresses stored in a marketing tool tied to a company it acquired in 2021. The company added that the contact information of fewer than 20,000 active customers and fewer than 15,000 former customers was also accessed. In those cases, the exposed details may have included names, email addresses, home addresses, and phone numbers. Aura said Social Security numbers, passwords, and financial information were not compromised. Aura is an online safety and identity protection provider that offers services to help consumers monitor fraud risks, protect accounts, and respond to identity-related threats. That makes any security incident particularly sensitive, even when the company says its core sensitive data stores remained protected. The timing of Aura’s statement closely follows a breach listing by ShinyHunters, which claims to be offering 900,000-plus Aura records containing personally identifiable information and internal corporate material. ShinyHunters told CyberInsider that the breach occurred through an Okta single sign-on (SSO) attack. CyberInsider HIBP reports that the leaked data affects 903,100 accounts, exposing names, email addresses, phone numbers, physical addresses, IP addresses, and customer service comments. It also noted that about 90% of the leaked records were already present in its system from previous breaches. Aura said it is notifying impacted individuals where appropriate and will provide support to affected customers. Even without passwords or financial data in the exposed set, people affected by the breach should be on the lookout for follow-up scams, especially calls, emails, or texts that reference Aura, identity protection, billing, or account security. If you liked this article, be sure to follow us on X/Twitter and also LinkedIn for more exclusive content. X LinkedIn Facebook Reddit Share More from CyberInsider Android to add 24-hour cooldown when sideloading apps from unverified devs Telegram’s tightened moderation failed to dislodge cybercrime US dismantles the world’s largest IoT botnets, Aisuru and KimWolf Proton says censorship drove VPN sign-up spikes in 62 countries in 2025 FBI confirmed it’s buying data that can be used to track people Apple publishes security guidance in response to DarkSword attacks About Amar Ćemanović Amar Ćemanović is an experienced editor and trained engineer with a keen eye for detail and a passion for technology. Based in Bosnia, Amar specializes in producing high-quality, engaging content. He holds a Master’s degree in engineering, which helps him maintain a meticulous approach to all editorial work. Amar brings a well-rounded knowledge base, covering everything from tech solutions to privacy tools. Reader Interactions Leave a Reply Cancel reply Your email address will not be published. Required fields are marked * Comment * Name * Email * Website Sidebar LATEST NEWS Android to add 24-hour cooldown when sideloading apps from unverified devs Telegram’s tightened moderation failed to dislodge cybercrime US dismantles the world’s largest IoT botnets, Aisuru and KimWolf Proton says censorship drove VPN sign-up spikes in 62 countries in 2025 FBI confirmed it’s buying data that can be used to track people Apple publishes security guidance in response to DarkSword attacks Navia Benefit Solutions data breach impacts 2.7 million individuals Session warns funding shortfall threatens encrypted messenger’s future New iOS exploit chain DarkSword discovered on government sites Identity protection firm Aura suffers data breach exposing 900,000 records Share to... Bluesky Buffer Copy Email Facebook Flipboard Hacker News Line LinkedIn Mastodon Messenger Mix Nextdoor Pinterest Print Reddit SMS Telegram Threads Tumblr X VK WhatsApp Xing Yummly
← Back to stories