A major data breach linked to the ShinyHunters hacking group could involve hundreds of terabytes—or even a petabyte—of stolen data.
A large cybersecurity incident involving Telus, one of Canada’s biggest telecommunications and digital services companies, is currently under investigation. The company confirmed that attackers gained unauthorized access to some internal systems after claims by the cyber‑extortion group ShinyHunters that it stole massive amounts of data.
The scale of the alleged breach has drawn global attention, with hackers claiming to have exfiltrated hundreds of terabytes to nearly 1 petabyte of data, which would make it one of the largest telecom‑related cyber incidents in recent years.
What Happened With the Telus Cybersecurity Incident
The breach centers around systems belonging to Telus and its digital services division, Telus Digital, which provides business process outsourcing and support services for companies around the world.
Key details currently known:
- Attackers reportedly gained unauthorized access to internal systems.
- The hacker group ShinyHunters claims it stole at least 700 TB of data, though some reports suggest the total could approach 1 PB (petabyte).
- The attackers allegedly sent a ransom demand in Bitcoin earlier in the year.
- Telus says the intrusion affected a limited number of systems and that core telecom services remain operational.
The company is currently working with cyber‑forensics teams and law enforcement while determining exactly what information may have been exposed.
Who the Telus Cybersecurity Incident Affects
The potential impact goes far beyond a single company.
According to reports and samples shared by the attackers, the stolen data may include:
- Customer support records
- Call logs and recordings
- Employee information
- Internal source code
- Personally identifiable information (PII)
- Data belonging to multiple corporate clients such as technology companies and banks
Because Telus Digital operates outsourced support and customer‑service platforms for many organizations, a breach there could expose information from numerous companies at once.
Expert Commentary on the Telus Cybersecurity Incident
Security researchers describe the attack as a targeted data‑extortion operation rather than traditional ransomware.
Instead of immediately encrypting systems, attackers appear to have:
- Quietly gained access to trusted systems
- Exfiltrated huge volumes of data
- Attempted to pressure the company with a “pay‑or‑leak” extortion model
That tactic is common for ShinyHunters, a cybercrime group active since 2019 that has carried out numerous high‑profile data breaches and extortion campaigns against global companies.
In this case, the attackers claim they accessed Telus systems using cloud credentials obtained during another breach involving the Salesloft Drift platform.
How to Stay Safe From the Telus Cybersecurity Incident
Even if you’re not a Telus customer, breaches involving service providers can still affect your data indirectly.
Recommended steps:
1. Watch for breach notifications
Companies affected through Telus Digital may notify customers if their data appears in the stolen datasets.
2. Change passwords for related services
Especially if you used the same password across multiple accounts.
3. Enable multi‑factor authentication (MFA)
This adds an extra layer of protection even if credentials leak.
4. Monitor for phishing attempts
Attackers often use stolen data to craft convincing scam emails.
5. Check financial and telecom accounts regularly
Look for unusual activity such as SIM swaps or unauthorized logins.
Conclusion
The Telus cybersecurity incident highlights a growing risk in modern cloud‑based and outsourced IT environments. By targeting a service provider that supports multiple organizations, attackers can potentially access massive amounts of sensitive information in a single breach.
While Telus says its main telecom services remain operational, investigators are still working to determine exactly what data was accessed and who may be affected. With claims of hundreds of terabytes of stolen information, the incident could become one of the most significant data‑extortion cases of 2026.
Cybersecurity for Business
Your business faces constantly evolving cyber threats that can jeopardize sensitive data, disrupt operations, and damage your reputation. Our cybersecurity for business solutions are tailored to meet the unique challenges of companies of all sizes, providing robust protection against malware, phishing, ransomware, and more.
Whether you’re a small startup or a large enterprise, we offer multi-license cybersecurity packages that ensure seamless protection for your entire team, across all devices. With advanced features like real-time threat monitoring, endpoint security, and secure data encryption, you can focus on growing your business while we handle your digital security needs.
Get a Free Quote Today! Safeguard your business with affordable and scalable solutions. Contact us now to request a free quote for multi-license cybersecurity packages designed to keep your company safe and compliant. Don’t wait—protect your business before threats strike!
