Infinite Campus, a K-12 student information system provider, suffered a data breach after the ShinyHunters threat group accessed an employee's Salesforce account. The attackers exfiltrated Salesforce records containing names and contact details for school staff and internal corporate data, then attempted to extort the company.
Initial Access
Employee Account Compromise
confirmed
The ShinyHunters threat group gained unauthorized access to an Infinite Campus employee's Salesforce account.
Defender cut points
Enforce phishing-resistant FIDO2 MFA on all employee accountsImplement strong access controls and least privilege for SaaS platform users
