"The breach exposed names, phone numbers, email addresses, and some physical addresses, with the data now circulating publicly topping 100 GB and covering 13.5 million email addresses."
"McGraw Hill described the source as a 'limited' Salesforce-hosted webpage, while the ShinyHunters crew added McGraw Hill to its dark web leak site alongside other victims."
"McGraw Hill insisted the intrusion 'did not involve unauthorized access to McGraw Hill's Salesforce accounts, customer databases, courseware, or internal systems.'"
McGraw Hill's data breach involved the exposure of 13.5 million records, including names, phone numbers, and email addresses, due to a misconfiguration in Salesforce. The breach was linked to the ShinyHunters ransomware group, which claimed to have over 40 million Salesforce records. McGraw Hill stated that the incident was part of a broader Salesforce issue and emphasized that there was no unauthorized access to its internal systems. The company has not publicly addressed the breach on its website or responded to inquiries.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]