"ShinyHunters and Qilin both come knocking," The Register headlined on 5 May 2026, reporting that a major real‑estate company has confirmed a vishing incident.
Cushman & Wakefield confirms vishing incident
The Register reported on 5 May 2026 that Cushman & Wakefield, identified in the story's URL, has confirmed a vishing incident. That is the central, attributable fact in the published item: the firm is said to have acknowledged an incident of social‑engineering by phone (vishing) in public reporting carried by The Register.
ShinyHunters appears by name in the coverage
The article's headline explicitly names ShinyHunters. The Register framed the episode with both the technique—vishing—and the presence in the headline of the threat actor name ShinyHunters, signaling the group’s relevance to the matter as reported.
Qilin appears by name in the coverage
Alongside ShinyHunters, the headline also names Qilin. The Register’s piece therefore associates both ShinyHunters and Qilin with the reported story; that naming is part of the public record in the article published on 5 May 2026.
Timing and source
- The Register published the report on 5 May 2026, as indicated by the article URL.
- The facts stated here derive from that published report; the headline and the URL together identify the firm (Cushman & Wakefield), the technique (vishing), and the two named groups (ShinyHunters and Qilin).
Questions the report leaves on the record
The Register’s headline and article establish a set of on‑the‑record items: a vishing incident has been confirmed by the company named in the story URL, and ShinyHunters and Qilin are named in the coverage. The published piece, as posted on 5 May 2026, thus prompts straightforward follow‑up questions that remain on the public record: what specific actions did Cushman & Wakefield report; whether the named groups represent confirmed perpetrators or were invoked as interested parties; and what, if any, impact the company disclosed. Those questions reflect what the Register’s reporting places on the record and point to the next steps readers and other outlets will look to corroborate.
This article draws only on facts as presented in The Register’s coverage of 5 May 2026. For the original reporting, see the source: https://www.theregister.com/security/2026/05/05/cushman-wakefield-confirms-vishing-cyberattack/5228718.




