- ShinyHunters reportedly breach Bumble and Match, stealing internal documents and limited user data
- Bumble says member accounts and profiles were not accessed during the phishing incident
- Group shifted from ransomware to data theft, warning enterprises of phishing and vishing threats
Dating apps Bumble and Match have reportedly been targeted by a cyberattack carried out by the notorious ShinyHunters group. The incident highlights the growing threat of data breaches impacting even the most popular online services.
The threat actor claims to have stolen a substantial amount of data from Bumble, including “thousands of internal documents,” according to a post shared by Hackmanac on January 27, 2026. The exfiltrated files reportedly originated from Google Drive and Slack and were designated as restricted or confidential.
Match Confirms Data Breach
Bloomberg reported that Bumble, which also owns Badoo and BFF, contacted law enforcement after a contractor’s account was compromised through a phishing attack. A spokesperson stated that the unauthorized access to a small portion of their network was brief and the threat actor was quickly removed.
Bumble maintains that the attackers did not gain access to member databases, individual accounts, the Bumble application itself, direct messages, or user profiles.
Match also confirmed on January 28, 2026, that it experienced a cybersecurity incident resulting in the compromise of a limited amount of user data. The company is notifying affected individuals and asserts that there is currently no evidence of compromised login credentials, financial information, or private communications.
ShinyHunters has been active in recent weeks, successfully breaching several large enterprises and allegedly targeting hundreds more. The group primarily employs phishing and vishing (voice phishing) tactics, with a focus on Okta, Microsoft, and other single sign-on (SSO) platforms.
Initially operating as a ransomware group, ShinyHunters shifted its strategy to focus solely on data exfiltration, finding it to be a cheaper, faster, and equally profitable approach. Other ransomware operators are reportedly following suit. Organizations, particularly those based in the U.S., are warned to be vigilant against individuals posing as IT or tech support over the phone.
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.
