Kodak Data Breach: 2.2 Million Records Targeted by ShinyHunters

The global cybersecurity landscape has shifted from localized, system-locking malware to sophisticated, cloud-native extortion campaigns that bypass traditional network barriers. On June 18, 2026, this reality was thrust into the spotlight for one of the world’s most historic technology and imaging giants. The official confirmation of the Kodak data breach has sent shockwaves through the enterprise IT sector, highlighting the highly aggressive tactics of the notorious threat actor group known as ShinyHunters.

At the center of this developing crisis is a high-stakes ultimatum delivered by ShinyHunters (also tracked by researchers as UNC6395 or UNC6240). Known for their bold public-facing negotiations and rapid exploitation of platform integrations, the group listed the Eastman Kodak Company on its dark web leak portal, asserting they had exfiltrated a massive cache of highly sensitive customer and corporate files. Setting a hard deadline of June 18, 2026, the group threatened that a failure to pay the ransom would trigger a public data dump alongside “several annoying (digital) problems” targeted at the company’s online operations.

Dissecting the Kodak Data Breach: 2.2 Million Records at Risk

The