7-11 confirms knowledge breach claimed via the ShinyHunters gang

Comfort retailer chain massive 7-11 showed that its methods have been breached in a cyberattack claimed via the ShinyHunters extortion crew remaining month.

Based in 1927, 7-11 now operates, franchises, and licenses over 86,000 shops globally, together with 13,000 shops within the U.S. and Canada, whilst its 7Rewards and Rapid Rewards loyalty methods have greater than 100 million contributors.

Along with 7-11 shops, the retail massive additionally operates and franchises Speedway, Stripes, Laredo Taco Corporate, and Carry the Roost Rooster and Biscuits places international.

As detailed in knowledge breach notifications despatched to affected folks on Would possibly 1 and filed in a couple of U.S. states on Friday, the corporate found out in early April that attackers received get right of entry to to a few 7-11 methods and the non-public data of an undisclosed collection of folks.

“We just lately found out that on April 8, 2026, an unauthorized 3rd birthday celebration received get right of entry to to sure 7-11 methods used to retailer franchisee paperwork,” 7-11 mentioned.

“We take the protection of your own data very severely and instantly introduced an investigation with a purpose to assess the affected paperwork and convey this on your consideration. We additionally sought after to make an apology for any inconvenience this may occasionally motive you.”

On the other hand, whilst 7-11 did not percentage additional data at the incident or the collection of other people suffering from the ensuing knowledge breach, the ShinyHunters cybercrime gang claimed duty for the assault on April 17.

The extortion gang says they have got allegedly stolen over 600,000 information containing company knowledge and for my part identifiable data after breaching the corporate’s Salesforce setting.

​Lower than every week after claiming the breach, ShinyHunters leaked a 9.4GB archive of paperwork on their darkish internet leak web page after the corporate refused to pay a ransom to have the stolen knowledge returned and destroyed.

“The corporate failed to achieve an settlement with us regardless of our fantastic endurance, all of the probabilities and gives we made,” the cybercriminals mentioned.

A 7-11 spokesperson was once now not instantly to be had for remark when BleepingComputer reached out to substantiate ShinyHunters’ claims and percentage further information about the breach, together with which classes of information have been uncovered and the collection of affected folks.

In August 2022, 7-11 Denmark additionally showed it was once the sufferer of a ransomware assault that encrypted a few of its methods and compelled it to close down 175 shops. 

ShinyHunters has been focused on Salesforce consumers for the previous yr, breaching loads of businesses and claiming they have got stolen billions of information within the Salesloft Go with the flow marketing campaign and the more moderen Salesforce Charisma knowledge robbery assaults.

Remaining week, edtech massive Instructure introduced that it reached an “settlement” with the extortion crew to make certain that the knowledge stolen in a up to date breach would now not be leaked on-line.

Different breaches just lately claimed via ShinyHunters come with the Ecu Fee, video provider Vimeo, edtech massive McGraw-Hill, scientific software maker Medtronic, Spanish fast-fashion store Zara, PornHub, Rockstar Video games, on-line relationship massive Fit Team, house safety massive ADT, and tech giants Google and Cisco.

The Federal Bureau of Investigation (FBI) suggested ShinyHunters’ sufferers on Friday to not give in to the danger actors’ calls for, and it up to now warned that paying a ransom does now not ensure that they are going to now not try to extort the sufferers once more or promote the stolen knowledge to different cybercriminals.