7-Eleven franchisee-docs and Salesforce data leak
Data Leak
Summary
Hide ▲
Show ▼
7-Eleven confirmed a April 8, 2026 intrusion into systems used to store franchisee documents, and ShinyHunters later claimed the theft of more than 600,000 Salesforce records before posting a 9.4GB archive on its leak site when ransom demands were not met. Have I Been Pwned later estimated the breach exposed personal information for 185,300 people, including names, dates of birth, email addresses, phone numbers, and physical addresses. The Happening now reflects a confirmed extortion-driven data leak affecting both franchisee records and Salesforce data.
Related Happenings
Infinite Campus hit by data theft breach linked to ShinyHunters
Incident
H score51
First: 15.06.2026 15:38
Last: 15.06.2026 15:38
Sources 1
About this happening:
**Infinite Campus** suffered a **Salesforce data theft breach** that exposed **more than 137,000 school staff accounts**, putting staff contact and account data at risk. The compr...
Infinite Campus hit by data theft breach linked to ShinyHunters
IncidentAbout this happening: **Infinite Campus** suffered a **Salesforce data theft breach** that exposed **more than 137,000 school staff accounts**, putting staff contact and account data at risk. The compr...
ShinyHunters Oracle PeopleSoft data theft and extortion campaign
Campaign
H score60
First: 10.06.2026 21:31
Last: 10.06.2026 21:31
Sources 1
About this happening:
**ShinyHunters**/**UNC6240** used **CVE-2026-35273** in **Oracle PeopleSoft Enterprise PeopleTools** as a **zero-day** to break into exposed systems, steal data, and extort victim...
ShinyHunters Oracle PeopleSoft data theft and extortion campaign
CampaignAbout this happening: **ShinyHunters**/**UNC6240** used **CVE-2026-35273** in **Oracle PeopleSoft Enterprise PeopleTools** as a **zero-day** to break into exposed systems, steal data, and extort victim...
Latest development: 29.06.2026 23:40
Nissan says attackers exploited an Oracle PeopleSoft vulnerability in a ShinyHunters-linked campaign and that the company was specifically targeted, with personal information for current and former employees in the United States, Canada, Mexico, and Brazil potentially exposed. Nissan says the material may include employee contact information, banking information, Social Security numbers, Social Insurance Numbers, National Identification Numbers, financial and tax information, and dependent and beneficiary information, and the company has activated incident response, engaged external cybersecurity experts, secured affected systems, and is working with Oracle.
DentaQuest 2.6 million-account data leak
Data Leak
H score65
First: 04.06.2026 21:36
Last: 04.06.2026 21:36
Sources 1
About this happening:
**DentaQuest**'s **public leak** exposed records for **2.6 million accounts**, putting **personal and health-related data** at risk. The leak followed **ShinyHunters**' claim to h...
DentaQuest 2.6 million-account data leak
Data LeakAbout this happening: **DentaQuest**'s **public leak** exposed records for **2.6 million accounts**, putting **personal and health-related data** at risk. The leak followed **ShinyHunters**' claim to h...
Charter Communications Salesforce data leak exposes 4.9 million accounts
Data Leak
H score72
First: 29.05.2026 11:29
Last: 29.05.2026 11:29
Sources 1
About this happening:
The **public leak** of **Charter Communications** data exposed **4.9 million accounts**, putting names, email addresses, phone numbers, and physical addresses into circulation. Th...
Charter Communications Salesforce data leak exposes 4.9 million accounts
Data LeakAbout this happening: The **public leak** of **Charter Communications** data exposed **4.9 million accounts**, putting names, email addresses, phone numbers, and physical addresses into circulation. Th...
Carnival Corporation customer data leak
Data Leak
H score60
First: 28.05.2026 13:49
Last: 28.05.2026 13:49
Sources 1
About this happening:
**Carnival Corporation** confirmed a **customer data leak** that exposed personal information for **5,995,277 people**, making this a large-scale privacy and identity-risk event....
Carnival Corporation customer data leak
Data LeakAbout this happening: **Carnival Corporation** confirmed a **customer data leak** that exposed personal information for **5,995,277 people**, making this a large-scale privacy and identity-risk event....
Timeline
-
26.05.2026 10:01 1 articles · 1mo ago
Have I Been Pwned estimates 185,300 people exposed in 7-Eleven breach
Victim Impact UpdateHave I Been Pwned analyzed the leaked 7-Eleven data and estimated that the breach exposed personal information for 185,300 people, including names, dates of birth, unique email addresses, phone numbers, and physical addresses. The exposed archive was tied to ShinyHunters' extortion campaign against 7-Eleven and followed the group's leak-site posting after ransom demands were not met.
Show sources
- 7-Eleven data breach exposes personal information of 185,000 people — www.bleepingcomputer.com — 26.05.2026 10:01
-
18.05.2026 14:25 2 articles · 1mo ago
7-Eleven detects franchisee-document intrusion
Initial Disclosure7-Eleven detected an intrusion into systems used to store franchisee documents and later disclosed that unspecified personal information had been compromised, with a notice to the Maine Attorney General’s Office saying two Maine residents were affected.
Show sources
- 7-Eleven Data Breach Confirmed After ShinyHunters Ransom Demand — www.securityweek.com — 18.05.2026 14:25
- 7-Eleven Data Breach Confirmed After ShinyHunters Ransom Demand — www.securityweek.com — 18.05.2026 14:25
-
18.05.2026 14:25 1 articles · 1mo ago
ShinyHunters claims stolen Salesforce records from 7-Eleven
Campaign Scope UpdateShinyHunters added 7-Eleven to its leak website and claimed theft of more than 600,000 Salesforce records containing personal information and corporate data, broadening the exposed data set beyond franchisee-document storage.
Show sources
- 7-Eleven Data Breach Confirmed After ShinyHunters Ransom Demand — www.securityweek.com — 18.05.2026 14:25
-
18.05.2026 14:25 2 articles · 1mo ago
ShinyHunters sets April 21 leak deadline
Campaign Scope UpdateShinyHunters threatened to leak the stolen 7-Eleven data unless a ransom was paid by April 21, turning the data compromise into an extortion deadline tied to the stolen franchisee and Salesforce records.
Show sources
- 7-Eleven Data Breach Confirmed After ShinyHunters Ransom Demand — www.securityweek.com — 18.05.2026 14:25
- 7-Eleven confirms data breach claimed by the ShinyHunters gang — www.bleepingcomputer.com — 19.05.2026 17:16