What Happened
In March 2026, CFGI Management, LLC (cfgi.com), a US-based financial consulting firm specializing in accounting advisory and risk compliance services, suffered a ransomware attack claimed by the group ShinyHunters, with the breach publicly reported on March 6 and discovered on March 9. ShinyHunters exfiltrated over 800,000 records containing sensitive personally identifiable information (PII) and internal corporate data, issuing a final warning for the company to negotiate by March 9 or face leaks and further issues; CFGI reportedly failed to reach an agreement despite offers. No exact number of affected individuals has been confirmed beyond the leaked records, and details on the initial intrusion method remain undisclosed.
