Madison Square Garden Breach: ShinyHunters Leaks 26 Million Records

ShinyHunters published roughly 45GB of Madison Square Garden data after an extortion deadline passed, exposing millions of customer records and biometric facial-recognition files — a high-profile entertainment-venue incident with sector-wide implications.

Share
Flat white line-art of a large arena dome outline beside an open ticket form, on an Oxblood background — Madison Square Garden cyber incident disclosure.

Key Takeaways

  • The extortion group ShinyHunters published roughly 45GB of data stolen from Madison Square Garden after the company missed a June 15, 2026 deadline, with reporting indicating the trove included customer contact records and biometric facial-recognition surveillance files.
  • A forensic accounting put the exposed customer set at 9,796,738 records — names, email addresses, phone numbers, physical addresses, and customer-service records — while ShinyHunters claims the full archive spans more than 26 million customer and corporate records.
  • MSG had not issued a public statement characterizing the incident as of mid-June, and the episode reportedly began with a vishing call that gave attackers access to the company's Microsoft Entra identity environment.

A high-profile entertainment-venue incident with sector-advisory implications for any operator holding customer and biometric data.

NEW YORK, NEW YORK — Madison Square Garden, the New York entertainment-and-sports company behind the Knicks, the Rangers, and a portfolio of marquee venues, is at the center of one of the more closely watched breaches of mid-2026 after the extortion group ShinyHunters published a large cache of its data online. According to multiple security outlets, the group released roughly 45 gigabytes of stolen material on June 16, 2026, after the company let a June 15 ransom deadline pass — a trove that reportedly included millions of customer contact records alongside biometric facial-recognition surveillance files tied to people who had passed through MSG properties.

The episode reads less like a quiet technical disclosure and more like a public extortion campaign playing out in stages, and it lands squarely in a year-long pattern of ShinyHunters extortion against large consumer brands. As of mid-June, Madison Square Garden had not issued a public statement formally characterizing the incident, leaving much of the public record to come from the attackers' own claims and from security researchers examining the leaked files.

At a Glance
FieldDetails
CompanyMadison Square Garden (MSG Sports / MSG Entertainment)
WhatData-theft extortion; ~45GB published after deadline passed
Affected9,796,738 customer records confirmed in analysis; ShinyHunters claims 26M+ customer and corporate records
Data categoriesNames, emails, phone numbers, addresses, customer-service records; reported biometric facial-recognition files
Named actorShinyHunters
RansomwareData-theft extortion (pay-or-leak); no file-encrypting ransomware reported
StatusData published June 16; MSG public statement not disclosed as of mid-June

What MSG Disclosed

The clearest feature of this incident is what Madison Square Garden has not said. As of mid-June 2026, the company had not issued a public statement formally characterizing the event, and representatives for MSG Entertainment and MSG Sports did not immediately respond to press requests for comment, according to outlets covering the leak. That silence has left the public narrative to be shaped largely by ShinyHunters' own claims and by security researchers and journalists examining the files the group dumped online.

What is on the record comes from the leak itself and from analysis of it. As 404 Media reported, ShinyHunters published roughly 45 gigabytes of data attributed to Madison Square Garden on June 16, 2026, after the company allowed a June 15 deadline to pass without paying. The group has claimed the underlying archive contains more than 26 million customer and corporate records; an independent forensic tally of the exposed customer set put it at 9,796,738 records, comprising names, email addresses, phone numbers, physical addresses, and customer-service records.

Reporting on the dump described more than ordinary contact data. Multiple outlets, including WIRED, said the material included biometric facial-recognition surveillance records, internal threat assessments, and dossiers on high-profile guests — details that resonate given MSG's well-documented use of facial-recognition technology at its venues. Because MSG itself has not confirmed the scope, those specifics are best read as attacker claims and researcher observations rather than figures the company has validated.

Notification Process for Affected Customers

In the absence of a formal company statement, customers have had limited official guidance on whether and how they were affected. Security practitioners commenting on the leak offered a blunt working assumption: anyone who has purchased tickets, contacted customer support, or attended events at MSG venues in recent years should treat their contact information as potentially exposed — an advisory issued by outside experts rather than by the company.

For affected individuals, the practical steps mirror guidance from comparable large-scale consumer incidents this year, including the Carnival extortion case: be alert to phishing and smishing that references MSG or its teams, treat unsolicited calls about the breach with suspicion, and consider the heightened risk of targeted social engineering now that contact details and possibly biometric identifiers are circulating. Where state law requires it, formal breach notifications and any offer of credit or identity monitoring would typically follow once the company completes its assessment.

The exposure of biometric facial-recognition data, if borne out, raises a distinct notification question that contact-data breaches do not. Unlike a password or a payment card, a face cannot be reset, and several U.S. states impose specific obligations around biometric information. That distinction is already drawing legal attention, with at least one proposed class action filed in New York federal court in the days after the data went public.

Sector-Advisory Implications for Entertainment-Venue Operators

Beyond Madison Square Garden, the incident functions as a de facto advisory for the broader live-entertainment and venue sector. Operators in this space sit on unusually rich data sets: ticketing and purchase histories, loyalty and membership profiles, customer-service interactions, and — increasingly — physical-security telemetry from camera systems and, in some cases, facial-recognition matching. That combination makes a single venue operator an attractive target.

The reported entry point underscores how little of this risk is purely technical. According to reporting by Inc., the intrusion began with a vishing call — a voice-phishing approach in which an attacker manipulates an employee over the phone — that ultimately yielded access to MSG's Microsoft Entra identity environment, the system used to manage accounts and network access. That pattern, in which social engineering against a single staff member unlocks centralized identity infrastructure, has recurred across this year's extortion campaigns and is a clear prompt for venue operators to harden help-desk and identity-recovery procedures.

For sector security leaders, the durable lesson is to treat customer and biometric data as a concentrated liability rather than a passive asset. Minimizing what is collected and retained, tightly governing access to identity platforms, and rehearsing the response to a public extortion scenario are the kinds of controls that limit blast radius when an operator is targeted.

Coordination With Ticketing and Payment-Processing Vendors

Large venue operators rarely run their customer-facing systems alone. Ticketing platforms, payment processors, customer-relationship and marketing tools, and identity providers form an interconnected supply chain, and an incident at the operator level inevitably raises questions about which vendor-held systems were in scope. In MSG's case, public reporting has centered on the company's own client and talent databases and its Microsoft Entra identity tenant rather than on a specific third-party ticketing or payment breach, and MSG has not detailed which integrated systems, if any, were affected.

That ambiguity is itself instructive. When an identity platform is compromised, the trust relationships it brokers with downstream vendors can become a pathway for further access, which is why coordinated response across the vendor chain matters. This year's extortion wave has repeatedly exploited that connective tissue — a dynamic seen across multiple Salesforce-linked vishing intrusions — making vendor coordination a core part of containment rather than an afterthought.

For operators reviewing their own posture, the practical work is mapping which vendors touch customer and payment data, confirming how identity and single sign-on connect those systems, and establishing in advance who is notified and how access is revoked when an identity provider is implicated.

Open Questions

Several material questions remain unresolved. Madison Square Garden has not publicly confirmed the scope of the incident, the precise number of people affected, or which specific systems and data categories were involved, so figures attributed to ShinyHunters — including the 26-million-record claim — should be treated as unverified attacker assertions until the company or regulators confirm them. The reported presence of biometric facial-recognition records is corroborated by multiple outlets examining the leak but had not, as of mid-June, been characterized by MSG itself.

Also open are the questions that define the long tail of these cases: whether and when MSG will issue formal breach notifications, what remediation will be offered to affected individuals, how regulators in states with biometric-privacy statutes will respond, and how the early class-action litigation will frame the company's data-collection practices. What is already clear is that a major entertainment operator's customer and surveillance data is circulating publicly following an extortion deadline that came and went — and that the sector-wide lessons about identity security and biometric-data stewardship do not wait for a final accounting.


The CyberSignal Analysis

The reported facts above are drawn from ShinyHunters' claims, researcher analysis of the leaked files, and outlet reporting; what follows is The CyberSignal's editorial reading of what defenders should take from them. None of the judgments below are new reported facts.

Signal 01 — Venue Facial-Recognition Data Is an Outsized-Liability Category

The detail that sets this incident apart from a routine contact-data leak is the reported presence of biometric facial-recognition surveillance files. Our reading is that defenders should stop treating venue biometrics as a security convenience and start modeling them as one of the highest-liability data categories an operator can hold. A leaked email address is a nuisance; a leaked faceprint is a permanent identifier that the affected person can never rotate, revoke, or reset. That asymmetry is what turns a facial-recognition store into a standing liability rather than a passive operational asset.

The legal exposure compounds the technical one. Several U.S. states impose specific statutory obligations around biometric information, and the early class-action filing in New York federal court signals that plaintiffs' attorneys already see biometric collection as the sharpest edge of this case. For any operator weighing whether to deploy facial recognition at scale, the sector-advisory takeaway is that the retention of that data — not merely its collection — is where the durable risk sits, and that data minimization is the single most effective control available before an intrusion ever occurs.

Signal 02 — The Vishing-to-Identity-Provider Pattern Is the Recurring Access Path

According to reporting, the intrusion began with a vishing call that ultimately yielded access to MSG's Microsoft Entra identity environment. We would put that access path, not the size of the leak, at the center of any defender's post-incident review. The pattern is now familiar across this year's extortion wave: a single manipulated help-desk or staff interaction unlocks the centralized identity platform, and from there the trust relationships that platform brokers do the rest of the work. The technical sophistication of the follow-on activity is almost beside the point when the front door is a phone call.

For security operations teams elsewhere, the actionable interpretation is to harden the human-mediated identity-recovery paths that phishing-resistant authentication alone does not cover. Help-desk verification procedures, out-of-band confirmation for account resets, and tightly governed access to the identity tenant are the controls that most directly bound this class of intrusion. Defenders who instrument only for malware or exploit signatures will keep missing the entry point that this campaign keeps using.

Signal 03 — Verified Counts and Attacker Claims Are Not the Same Number

Two figures are circulating for this incident, and the discipline of keeping them separate is itself a lesson. A forensic tally of the exposed customer set produced a concrete number — 9,796,738 records — while ShinyHunters claims the full archive exceeds 26 million customer and corporate records. Our assessment is that defenders and communicators should anchor to the verified count and treat the attacker's figure as an unconfirmed assertion until MSG or regulators validate it. Extortion groups have a direct incentive to inflate scope, because a larger claimed number increases pressure to pay.

The forward-looking watch item is how the gap between the two numbers resolves as the investigation matures. A confirmed count grounded in analysis of the actual leaked files is a finding; a round attacker claim published to a leak site is a negotiating posture. Treating them interchangeably in advisories or notifications risks both overstating harm to affected individuals and rewarding the extortion playbook — which is precisely why verified-count discipline belongs in every incident-response communications plan.


Sources

TypeSource
ReportingWIRED — Madison Square Garden cyber incident
ReportingInc. — How the MSG hack started with one old-school trick
Reporting404 Media — Hackers publish Knicks and MSG data online
BackgroundHave I Been Pwned — Madison Square Garden Sports Data Breach
RelatedThe CyberSignal — Charter Spectrum confirms ShinyHunters 42M records
RelatedThe CyberSignal — Carnival confirms 6M ShinyHunters extortion
RelatedThe CyberSignal — NYC Health + Hospitals biometric fingerprints breach