← Back to monitor
Confirmed Critical
Kemper
In April 2026, the American insurance holding company Kemper Corporation was named by the ShinyHunters ransomware group in a "pay or leak" extortion campaign . The attackers allegedly accessed Kemper's Salesforce environment via social engineering as part o…
Observed context
Detected on . Classification may change as independent evidence emerges.
Reported data classes
Email addressesNamesPartial credit card dataPhone numbersPhysical addressesPurchases
References
Public intelligence sources only — Rift links to reporting, never to leaked data.