McGraw-Hill Confirms Data Breach Following Extortion Threat

Education company McGraw-Hill confirmed a data breach after hackers exploited a misconfiguration in its Salesforce environment to access internal data. The incident followed an extortion threat, though the article does not specify the exact date of the breach or the threat actor involved. No details were provided regarding the type or volume of data compromised, nor were any CVEs or technical specifics about the misconfiguration disclosed. The breach was acknowledged in a statement to BleepingComputer, indicating the company’s direct response to the incident. The impact remains limited to the confirmed unauthorized access without further details on operational or financial consequences.