Infinite Campus Salesforce Breach Exposes School Staff Data
Learn More
Infinite Campus, a provider of K-12 student information systems, reports a security breach on March 18, 2026 caused by unauthorized access to an internal Salesforce account used for customer support and case management. The ShinyHunters threat group claimed responsibility for the attack and demanded a ransom by March 25, 2026, to prevent a data leak.
Infinite Campus detected the intrusion through internal security alerts and immediately disabled the affected account. The compromised data includes:
- School staff names
- Staff contact information
- Directory information
- Internal Salesforce records and ticketing data
The number of affected individuals is not disclosed. The company claims that the unauthorized actor did not access student or employee databases and is currently scanning help tickets to determine if any sensitive data was inadvertently included in customer support communications.
To protect systems, Infinite Campus disabled services for customers who did not have IP address restrictions in place. They are currently working with security partners to audit the accessed Salesforce data and are notifying impacted school districts directly.
