The Everest ransomware group is claiming accountability for breaching Mailchimp, the favored advertising platform used to create, ship and handle e-mail campaigns and newsletters.
The group made the announcement earlier at the moment on its darkish net leak website, claiming to have stolen a 767 MB database containing 943,536 traces of information. In keeping with Everest, the leak consists of “inside firm paperwork” and “an enormous number of private paperwork and knowledge of shoppers.”
A have a look at the pattern information printed by Everest reveals that the leaked dataset consists of structured enterprise data quite than delicate inside Mailchimp information. The data seem to comprise domains, firm emails, cellphone numbers, metropolis and nation particulars, GDPR area labels, social media hyperlinks, and details about internet hosting suppliers.
Many entries additionally record the know-how stacks utilized by the businesses, reminiscent of Shopify, WordPress, Amazon, Google Cloud, and PayPal. The info is organised in spreadsheet-style rows, suggesting it could have come from a advertising or CRM export quite than from Mailchimp’s inside methods.
Everest ransomware is a comparatively obscure pressure that emerged round 2020. It follows the double extortion mannequin, the place attackers encrypt a sufferer’s information and likewise steal information to strain victims by threatening public publicity.
Whereas Everest by no means reached the notoriety of teams like REvil or Conti, it did declare accountability for a breach of Coca-Cola in Might 2025 and later leaked worker information on-line.
However, whether or not small or massive, ransomware assaults are peaking. On July 30, 2025, the INC ransomware claimed to have stolen 1.2 terabytes of information from Greenback Tree. On the identical day, one other group known as GLOBAL GROUP introduced a breach of the Miami-based media firm Albavision, claiming to have taken 400 GB of information. These claims got here simply days after NASCAR acknowledged an information breach following Medusa ransomware’s demand for a $4 million ransom.
Hackread.com has reached out to Mailchimp. This text will probably be up to date accordingly.
