Educational giant **McGraw Hill** has acknowledged a data breach incident resulting from a misconfiguration within a **Salesforce** environment. The breach, impacting multiple organizations, involves the unauthorized access to a limited set of non-sensitive data. A spokesperson for **McGraw Hill** stated, "This activity appears to be part of a broader issue involving a misconfiguration within **Salesforce’s** environment that has impacted multiple organizations that work with **Salesforce**. Importantly, this did not involve unauthorized access to **McGraw Hill’s Salesforce** accounts, customer databases, courseware, or internal systems." ## ShinyHunters Claim Responsibility The breach came to light when the **ShinyHunters** cybercriminal organization claimed to have stolen 45 million **Salesforce** records. The group threatened to release the data by April 14th if their ransom demands were not met. **McGraw Hill** was added to the group's leak site alongside other companies, including **Rockstar Games**. ## McGraw Hill's Response Upon discovering the incident, **McGraw Hill** claims to have immediately secured the affected webpages and initiated an investigation. Their review of the stolen data indicates that it is limited in scope and consists of non-sensitive information. The company clarified that the breach did not expose Social Security numbers, financial information, or student data. **McGraw Hill**, a major player in the education sector with reported revenues of $434.2 million last quarter, is collaborating with **Salesforce** to enhance security measures and fully resolve the issue. ## Salesforce's Perspective A **Salesforce** spokesperson stated that there is "no indication that the **Salesforce** platform has been compromised," attributing the recent cybercriminal activity to factors unrelated to any known vulnerability in their technology. ## ShinyHunters' Resurgence **Salesforce** customers have been repeatedly targeted by hackers connected to **ShinyHunters** since last year. After arrests of some members, the group resurfaced earlier this year with attacks on dating app companies **Bumble** and **Match Group**, **Canada Goose**, the **University of Pennsylvania**, and the **European Commission**.