Skip to content
Tech News
← Back to articles

Telus Digital confirms breach after hacker claims 1 petabyte data theft

2026-03-12 | original
read original get Cybersecurity Data Breach Kit → more articles
Why This Matters

The Telus Digital breach highlights the growing risks faced by BPO providers, which often hold vast amounts of sensitive customer and corporate data. This incident underscores the importance of robust cybersecurity measures to protect critical infrastructure and customer information in the digital services industry.

Key Takeaways

Canadian business process outsourcing giant Telus Digital has confirmed it suffered a security incident after threat actors claimed to have stolen nearly 1 petabyte of data from the company in a multi-month breach.

Telus Digital is the digital services and business process outsourcing (BPO) arm of Canadian telecommunications provider Telus, providing customer support, content moderation, AI data services, and other outsourced operational services to companies worldwide.

Because BPO providers often handle customer support, billing, and internal authentication tools for multiple companies, they can become attractive targets for threat actors seeking access to large amounts of customer and corporate data through a single breach.

The breach was carried out by threat actors known as ShinyHunters, who claims to have stolen a wide range of customer data related to Telus' BPO operations, as well as call records for Telus' consumer telecommunications division.

BleepingComputer was told in January that Telus had suffered a breach and contacted the company with questions, but did not receive a response to our emails at that time.

Yesterday, Telus confirmed that it suffered a breach, stating that it is currently investigating what was stolen and which customers were affected.

"TELUS Digital is investigating a cybersecurity incident involving unauthorized access to a limited number of our systems. Upon discovery, we took immediate steps to address the unauthorized activity and secure our systems against further intrusion. We are actively managing the situation and continue to monitor it closely," Telus told BleepingComputer.

"All business operations within TELUS Digital remain fully operational, and there is no evidence of disruption to customer connectivity or services. As part of our response, we have engaged leading cyber forensics experts to support our investigation, and we are working with law enforcement. "

"We have implemented additional security measures to further safeguard our systems and environment. As our investigation progresses, we are notifying any impacted customers, as appropriate. The security of our customers' information continues to be our highest priority."

A source told BleepingComputer last week that ShinyHunters were extorting the company, but Telus was not engaging with the threat actors.

... continue reading

Explore topics: telus shinyhunters data breach bpo cybersecurity
Related:
Starbucks discloses data breach affecting hundreds of employees
Canadian retail giant Loblaw notifies customers of data breach
England Hockey investigating ransomware data breach
1B identity records exposed in ID verification data leak
INC Ransomware Group Holds Healthcare Hostage in Oceania

© 2026 GoKawiil

About | Editorial Policy | Contact