CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Salesforce misconfiguration leads to non-sensitive data exposure at McGraw-Hill amid ShinyHunters extortion claims

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

McGraw-Hill disclosed unauthorized access to a limited set of data hosted on a Salesforce webpage due to a Salesforce environment misconfiguration. The company stated the breach did not involve its Salesforce accounts, customer databases, courseware, or internal systems, and exposed data is limited and non-sensitive. An extortion group, ShinyHunters, claimed responsibility, alleging possession of 45 million Salesforce records with personally identifiable information (PII), contradicting McGraw-Hill’s assessment. The affected webpages were secured promptly, and McGraw-Hill is collaborating with Salesforce to remediate the issue.

Timeline

  1. 14.04.2026 21:07 1 articles · 3h ago

    McGraw-Hill discloses Salesforce misconfiguration-driven data exposure amid ShinyHunters extortion claim

    McGraw-Hill reported unauthorized access to a limited set of data hosted on a Salesforce webpage due to a Salesforce environment misconfiguration. The company stated the breach did not involve critical systems or sensitive data, though the ShinyHunters extortion group claimed possession of 45 million records containing PII. Affected webpages were secured, and remediation is underway with Salesforce.

    Show sources
    Open in new tab

Information Snippets

  • A Salesforce environment misconfiguration allowed unauthorized access to a limited set of McGraw-Hill data hosted on a Salesforce webpage, as confirmed by the company.

    First reported: 14.04.2026 21:07
    1 source, 1 article
    Show sources

  • McGraw-Hill asserts the breach did not impact its Salesforce accounts, customer databases, courseware, internal systems, or expose sensitive data such as Social Security numbers, financial account information, or student data.

    First reported: 14.04.2026 21:07
    1 source, 1 article
    Show sources

  • ShinyHunters claimed responsibility for the incident, alleging possession of 45 million Salesforce records containing personally identifiable information (PII), which contrasts with McGraw-Hill’s statement.

    First reported: 14.04.2026 21:07
    1 source, 1 article
    Show sources

  • McGraw-Hill reported that the affected webpages were secured immediately after detecting the unauthorized activity and is working with Salesforce to strengthen protections.

    First reported: 14.04.2026 21:07
    1 source, 1 article
    Show sources

  • ShinyHunters is a known data extortion group with multiple high-profile breaches in 2025 and 2026, including attacks on Rockstar Games, Hims & Hers, the European Commission, Telus Digital, Wynn Resorts, Canada Goose, Match Group, Panera Bread, and CarGurus.

    First reported: 14.04.2026 21:07
    1 source, 1 article
    Show sources