verified2026-05-05

Cushman & WakefieldCushman & Wakefield breach

cushmanwakefield.com · 310,431 records compromised

Records
310K
Breach date
2026-05-05
Domain
cushmanwakefield.com
Data classes
6

Description

In May 2026, the real estate services firm Cushman & Wakefield was the target of a "pay or leak" extortion campaign by the ShinyHunters group . Following the threat, the group publicly published data they alleged had been obtained from the firm, consisting mostly of C&W email addresses along with tens of thousands of external email addresses and corporate contact records. The exposed data was primarily business information, including names, job titles, company addresses and phone numbers.

Compromised data classes· 6

Email addressesJob titlesNamesPhone numbersPhysical addressesSalutations

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Breach
Marcus & Millichap
Breach
Aman
Breach
Ameriprise
Breach
Kemper
Breach
Pitney Bowes
Breach
Canada Life
Sourced from Have I Been Pwned. Aggregate metadata only — no PII. Curated by Adam Lundqvist, Founder at SQUR.