ShinyHunters made good on their threat after 7-Eleven’s security team refused to negotiate, dumping a 9.4GB archive of franchisee data. The breach occurred on April 8, 2026, with attackers targeting Salesforce-connected systems used to manage franchisee documents rather than customer-facing databases. Analysts tie the intrusion to ShinyHunters’ broader vishing campaign against identity providers, which lets them bypass MFA and hijack admin accounts. The dump exposes 185,300 accounts including names, addresses, Social Security Numbers, and Driver’s License data submitted during financial vetting. The group listed 7-Eleven on April 17 and released the full dataset on April 22. Link: Read more