ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

Aman Data Breach

aman.com
Limited exposure
Verified breach
Accounts exposed 215,563
Breach date 20 Apr 2026
Added to tracker 01 May 2026
Data classes 10

What happened

In April 2026, the ultra-luxury hotel brand Aman was named by ShinyHunters as the target of a "pay or leak" extortion campaign, with the data allegedly obtained from their Salesforce CRM. The data was subsequently leaked publicly and contained over 200k unique email addresses. Whilst not present on all records, the data also included genders, physical addresses, phone numbers, nationalities, dates of birth, spouse names and VIP status codes.

Exposed data

Dates of birth Email addresses Genders Language preferences Names Nationalities Phone numbers Physical addresses Spouses names VIP statuses

Recommended actions

  • Watch for targeted phishing emails referencing Aman โ€” attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk โ€” consider credit monitoring or a credit freeze.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP