A major cybersecurity breach affecting the education sector has exposed the personal information of more than 137,000 school staff members after hackers targeted the widely used Infinite Campus student information system.
Infinite Campus Data Breach Exposes Information of Over 137,000 School Staff Members
Infinite Campus, a leading education technology company that serves more than 3,200 school districts across the United States, confirmed that cybercriminals gained unauthorized access to sensitive data during an attack linked to compromised Salesforce accounts. The company manages educational records for approximately 11 million students across 46 states, making it one of the largest providers of student information systems in the country.
According to newly disclosed details, the attack has been attributed to the notorious cyber extortion group known as ShinyHunters, a threat actor with a long history of targeting major organizations and stealing customer data for financial gain.
The breach occurred in March when attackers successfully accessed company systems through Salesforce-related accounts. While Infinite Campus initially informed customers about the security incident at the time, it did not publicly identify the threat group responsible. Instead, the company described the attackers as members of a broader criminal network known for targeting Salesforce environments at hundreds of organizations worldwide.
Security investigators later determined that the intrusion was part of a larger campaign conducted by ShinyHunters and affiliated cybercriminals. The group has previously been linked to numerous high-profile data theft operations affecting technology firms, retailers, telecommunications providers, and government organizations.
The compromised information reportedly includes personal details belonging to more than 137,000 school employees. While Infinite Campus has not publicly disclosed every category of information involved, data breaches of this nature often expose names, contact details, employee identifiers, and other sensitive records that could potentially be used in phishing attacks, identity theft, or social engineering campaigns.
The incident has raised concerns throughout the education sector, which has increasingly become a target for cybercriminals due to the vast amount of personal information stored in school databases. Educational institutions frequently maintain records containing student data, employee information, financial records, and administrative documents, making them attractive targets for threat actors.
Cybersecurity experts warn that organizations relying on third-party cloud platforms and customer relationship management systems such as Salesforce must strengthen authentication controls, monitor account activity, and implement multi-factor authentication to reduce the risk of account compromise.
Infinite Campus stated that it continues to work with cybersecurity specialists to investigate the breach, assess the full impact of the incident, and enhance security protections. The company has also notified affected customers and is cooperating with relevant authorities.
The breach serves as another reminder of the growing cybersecurity challenges facing educational institutions and technology providers as cybercriminal groups continue to target organizations holding large volumes of sensitive personal data.
As investigations continue, affected school districts and staff members are being urged to remain vigilant for suspicious emails, phishing attempts, and other potential fraud activities that may arise from the stolen information.
