Security Report – 1 May 2026

Exploit: Ransomware & Malware

Risk to Business: Moderate: The world’s largest cruise company, Carnival Corporation, confirmed a ransomware attack that reportedly exposed 8.7 million records from its subsidiary Holland America Line. Alarmingly, this appears to be part of a much broader campaign, with over 40 organisations worldwide reportedly breached by the same ransomware group, exposing millions of records and terabytes of internal data. More than 40 organisations, including major retailers, insurers and hospitality firms, have been listed on the ShinyHunters ransomware group’s data leak site. The affected entities include Carnival Corporation, Mytheresa, Pitney Bowes, The Canada Life Assurance Company, Hallmark and Inditex, the parent company of Zara. The exposed data reportedly contains personally identifiable information (PII), customer records, transaction histories and large volumes of internal corporate data. The ransomware group’s listings date back to January 23, 2026, with new victims added as recently as last week. According to them, the stolen data will remain publicly available unless ransom demands are met.

United States – Seiko USA – Manufacturing 

Exploit: Hacking

Risk to Business: Moderate: The Seiko USA website was defaced by threat actors, who displayed a message claiming they had stolen its Shopify customer database and threatened to leak it unless a ransom was paid. Last week, visitors to the “Press Lounge” section of the site were shown a page titled “HACKED,” replacing normal content with what appeared to be a ransom demand and breach notice. The message claimed attackers had accessed the company’s Shopify backend and exfiltrated customer data, including order history, shipping details and account information. While Seiko USA has not publicly confirmed the incident, the company has since removed the defacement message from its website.

Talk to a TCT team member today about implementing IT strategy plan for your business.