Educational company McGraw Hill said a limited breach of non-sensitive information was tied to a misconfiguration involving a Salesforce database that has impacted multiple organizations.
A spokesperson for McGraw Hill said the company recently “identified unauthorized access to a limited set of data from a webpage hosted by Salesforce on its platform.”
“This activity appears to be part of a broader issue involving a misconfiguration within Salesforce’s environment that has impacted multiple organizations that work with Salesforce,” the spokesperson said. “Importantly, this did not involve unauthorized access to McGraw Hill’s Salesforce accounts, customer databases, courseware, or internal systems.”
The data breach emerged this weekend when the ShinyHunters cybercriminal organization claimed to have stolen 45 million Salesforce records and threatened to leak the information by April 14 if a ransom was not paid.
The company was added to the cybercriminals’ leak site along with several other notable companies, including Rockstar Games.
The McGraw Hill spokesperson said that when the incident was discovered, they immediately secured the affected webpages and started an investigation. A review of the stolen data found that it is “limited in scope and consists of non-sensitive information.”
McGraw Hill is one of the largest educational companies in the world, providing educational content, software and services to grade schools, universities and companies. It reported $434.2 million in revenue last quarter.
McGraw Hill did not say how many people were affected by the incident, but said it did not involve information like Social Security numbers, financial information or student data.
The company noted that it is working with Salesforce to “further strengthen protections and ensure this issue is fully addressed.”
A Salesforce spokesperson said there is “no indication that the Salesforce platform has been compromised,” and said the recent cybercriminal activity “is not related to any known vulnerability in our technology.”
Salesforce customers have been repeatedly targeted by hackers connected to ShinyHunters since last year during several of the gang’s campaigns targeting various industries. After a string of high-profile, damaging cyberattacks on the insurance, retail and aviation industries, members of the group were arrested and charged by law enforcement agencies in the U.S. and U.K.
A lull in activity followed the arrests but the group resurfaced earlier this year with attacks on dating app companies Bumble and Match Group, Canada Goose, the University of Pennsylvania and the European Commission.
Recorded Future
Intelligence Cloud.
Click Here For The Original Source.
