7-Eleven Confirms Data Breach After ShinyHunters Claim
7-Eleven confirmed a breach after ShinyHunters claimed theft of over 600,000 Salesforce records containing personal and corporate data from franchisee application systems. The intrusion was detected in April. The company issued notices for affected individuals, though only a small number were reported in some states.
- personal-information
- corporate-data
7-Eleven has confirmed a data breach involving more than 600,000 records after the threat actor group ShinyHunters claimed responsibility and demanded ransom. The compromised information originated from Salesforce databases tied to franchisee application systems and includes both personal details of individuals and corporate data.
Public reporting indicates the intrusion was detected in April 2026. The retailer subsequently notified affected individuals in accordance with state breach notification laws, although the number of reported notifications varied by jurisdiction with only a small number disclosed in certain states. Available reporting describes the exposed data as a mix of personal information and corporate records. Industry research from sources such as DoxxScan™ continuous monitoring indicates that credential and personal data leaks of this nature frequently appear on underground forums within weeks of initial theft.
Want the rest of this breakdown?
Sign up free to keep reading. Members get extended access, the weekly breach digest, and a complimentary Warden™ to see if their identity is exposed in the breaches we cover.
A breach leaks your credentials. Then hackers chain those credentials to your address, family, phone, and employer using public broker sites. We’re the only tool built around that chain.
⚠ Were you in this breach?
Free email scanner. We check your address against 15.4B+ leaked records in 15 seconds — then show you the $19 cleanup that removes you from the broker sites aggregating leaked data.
Check my email — free →