Checkout.com Refuses Ransom Demand, Donates to Cybersecurity Research Instead

Checkout.com reveals data breach by ShinyHunters; legacy cloud system accessed, no payment info compromised, funds donated to cyber research.

By Content Team

Nov 14, 2025

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

Payment provider Checkout.com disclosed a data breach after hackers from the notorious ShinyHunters group tried to extort them. The attackers accessed a legacy third-party cloud storage system that hadn't been used since 2020 and wasn't properly decommissioned.

The breach affected internal documents and merchant onboarding materials but didn't compromise payment processing, merchant funds, or card numbers. Checkout refused to pay the ransom and instead announced they'll donate the ransom amount to Carnegie Mellon University and Oxford's Cyber Security Center for cybercrime research.

The company has launched an investigation and reported the incident to law enforcement and regulators.

Source: Security Week

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

FortiGate Firewalls Under Attack: Hackers Exploit Critical Vulnerabilities to Steal Corporate Credentials

Mar 15, 2026

UK Security Agency Warns of Severe Cyber Threats to Critical Infrastructure

Feb 11, 2026

Freedom Mobile Hit by Data Breach Affecting Customer Personal Information

Dec 27, 2025

OpenAI Hit by North Korean Supply Chain Attack Through Popular JavaScript Library

Apr 13, 2026