Data Breach at McGraw Hill Exposes 13.5 Million User Accounts

Data Breach at McGraw Hill Exposes 13.5 Million User Accounts

First seen 16 Apr 2026, 11:15 UTC BleepingcomputerTherecord.Mediahaveibeenpwned.comCybersecuritynewsTheregister+3 82% similarity 64.5

Article Content

Browse articles
ThreatCluster

In April 2026, McGraw Hill confirmed a data breach affecting approximately 13.5 million user accounts, attributed to a misconfiguration in its Salesforce environment. The ShinyHunters extortion group claimed responsibility, threatening to leak data unless a ransom was paid. The breach exposed over 100GB of data, including names, email addresses, phone numbers, and some physical addresses. McGraw Hill stated that the incident did not compromise sensitive data such as Social Security numbers or financial information. The company is collaborating with cybersecurity experts and Salesforce to address the issue. Despite assurances, the breach has raised concerns about the security of user data. The incident is part of a broader trend of attacks targeting organizations using Salesforce. The ShinyHunters group has previously breached other high-profile entities, indicating a pattern of targeting educational and corporate systems.

Key Points: • McGraw Hill's data breach affects 13.5 million accounts due to a Salesforce misconfiguration. • ShinyHunters extortion group leaked over 100GB of data, including personal information. • The breach did not involve sensitive data like Social Security numbers or financial details.

ThreatCluster AI

Timeline

2026-04-14
ShinyHunters threatened to leak data unless ransom was paid.
2026-04-16
McGraw Hill confirmed the data breach and its details.
2026-04-16
Data breach notification service Have I Been Pwned reported on the leak.

Community

Browse all →