The info breach notification service Have I Been Pwned says {that a} information breach on the U.S. meals chain Panera Bread affected 5.1 million accounts, not 14 million clients as beforehand reported.
Based in 1987, the corporate operates practically 2,300 bakery-cafes throughout 48 U.S. states and in Ontario, Canada, beneath the names Panera Bread or Saint Louis Bread Co.
Have I Been Pwned’s report comes after the ShinyHunters extortion gang claimed in late January that that they had stolen a variety of personally identifiable data (PII) and phone data for over 14 million Panera Bread person accounts. The cybercrime group has since leaked an archive of practically 760 MB of paperwork on its darkish internet leak web site, containing information stolen from Panera Bread.
“These recordsdata had been leaked on the ShinyHunters DLS as a result of the sufferer didn’t pay a ransom or cooperate and adjust to the ShinyHunters group,” the extortion gang says in a textual content file added to the leaked archive.
ShinyHunters informed BleepingComputer that they gained entry to Panera’s methods by way of a Microsoft Entra single sign-on (SSO) code. The assault was a part of a brand new ShinyHunters voice phishing (vishing) marketing campaign concentrating on single sign-on (SSO) accounts at Okta, Microsoft, and Google throughout greater than 100 high-profile organizations.
“In January 2026, Panera Bread suffered an information breach that uncovered 14M data,” mentioned information breach notification service Have I Been Pwned over the weekend. “After an tried extortion failed, the attackers printed the info publicly, which included 5.1M distinctive e-mail addresses together with related account data similar to names, telephone numbers and bodily addresses.”
Whereas different information retailers have reported instantly after ShinyHunters claimed the assault that the breach affected 14 million Panera Bread clients, the extortion gang’s web site defined that that quantity refers to data stolen throughout the assault. In accordance with BleepingComputer’s depend, these stolen data include private data for roughly 5,120,000 distinctive person accounts, which can signify fewer clients, since every affected particular person could have used multiple account.
BleepingComputer additionally discovered greater than 26,000 distinctive panerabread.com e-mail addresses, probably belonging to Panera Bread workers whose PII was stolen within the breach.
Whereas Panera Bread has but to file information breach notifications or situation a press release in regards to the incident, it has notified authorities and confirmed the breach, saying that “the info concerned is contact data.”
As a part of the identical sequence of vishing assaults, ShinyHunters has additionally breached the net relationship large Match Group, which owns a number of standard relationship providers, together with Tinder, Match.com, Hinge, Meetic, and OkCupid.
Match Group has since confirmed that the attackers stole a “restricted quantity of person information” after ShinyHunters leaked 1.7 GB of compressed recordsdata allegedly containing inner paperwork and round 10 million data of Hinge, OkCupid, and Match person data.
Audio streaming platform SoundCloud additionally confirmed a ShinyHunters assault in December, following widespread reviews of customers encountering 403 “Forbidden” errors when connecting by way of VPN. The assault led to a information breach affecting 29.8 million accounts, as Have I Been Pwned revealed final week.
BleepingComputer reached out to Panera Bread with questions in regards to the December 2025 incident, however a response was not instantly accessible.
Panera Bread additionally notified workers of an information breach in June 2024 after menace actors stole their private data in a March 2024 ransomware assault that triggered a nationwide IT outage.
Trendy IT infrastructure strikes sooner than handbook workflows can deal with.
On this new Tines information, find out how your crew can cut back hidden handbook delays, enhance reliability by automated response, and construct and scale clever workflows on high of instruments you already use.
