**McGraw-Hill** has acknowledged that hackers exploited a **Salesforce** misconfiguration to gain unauthorized access to its internal data. The company disclosed this incident to BleepingComputer, emphasizing that the breach did not compromise its **Salesforce** accounts, customer databases, or internal systems. According to a **McGraw-Hill** spokesperson, "McGraw-Hill recently identified unauthorized access to a limited set of data from a webpage hosted by Salesforce on its platform. This activity appears to be part of a broader issue involving a misconfiguration within Salesforce’s environment that has impacted multiple organizations that work with Salesforce." The company maintains that the exposed data is limited in scope and does not contain sensitive information such as Social Security numbers (SSNs), financial account details, or student data from its educational platforms. **ShinyHunters** Claims Responsibility The confirmation of the cyberattack follows an announcement by the **ShinyHunters** extortion group, who listed **McGraw-Hill** as a victim on their dark-web portal. The group threatened to release stolen data by April 14 unless a ransom is paid. **ShinyHunters** claims to possess 45 million **Salesforce** records containing personally identifiable information (PII), a claim that contradicts **McGraw-Hill's** assertion that the compromised data is not sensitive.  *McGraw-Hill on ShinyHunters' extortion portal* *Source: BleepingComputer* Immediate Remediation and Ongoing Investigation **McGraw-Hill** stated that the affected webpages were secured immediately after detecting the unauthorized activity. The company is collaborating with **Salesforce** to enhance security measures and ensure the issue is fully resolved. **ShinyHunters'** Recent Activities **ShinyHunters** has been linked to several high-profile security breaches this year, targeting organizations such as **Rockstar Games**, **Hims & Hers**, the **European Commission**, **Telus Digital**, **Wynn Resorts**, **Canada Goose**, **Match Group**, **Panera Bread**, and **CarGurus**. In March, the group also targeted **Infinite Campus**, a firm providing K-12 student information systems.