McGraw-Hill says unauthorized access to a limited webpage hosted on Salesforce resulted from a Salesforce platform misconfiguration, but its Salesforce accounts, customer databases, courseware, and internal systems were not accessed. The company reports the exposed data was limited and non-sensitive, is working with Salesforce and external experts after extortion claims, and faces public pressure from threat actor ShinyHunters. #McGrawHill #ShinyHunters
Keypoints
- Hackers exploited a Salesforce misconfiguration to access a limited webpage hosted on Salesforce.
- McGraw-Hill reports its Salesforce accounts, customer databases, courseware, and internal systems were not compromised.
- The exposed information is described as limited and non-sensitive, with no SSNs, financial account data, or student records.
- Extortion group ShinyHunters claims to hold 45 million Salesforce records and threatened to leak data unless paid.
- McGraw-Hill secured the affected webpages and is working with Salesforce and external cybersecurity experts to strengthen protections.