7-Eleven data breach exposes private info of 185,000 individuals

The ShinyHunters extortion gang stole the non-public info of over 183,000 individuals after hacking the techniques of comfort retailer chain big 7-Eleven in April, in response to data breach notification service Have I Been Pwned.

Based in 1927, 7-Eleven now operates, franchises, and licenses greater than 86,000 shops worldwide, together with 13,000 shops within the U.S. and Canada. 7-Eleven additionally operates and franchises Speedway, Stripes, Laredo Taco Firm, and Increase the Roost Rooster and Biscuits areas, and its 7Rewards and Speedy Rewards loyalty packages even have over 100 million members.

The corporate revealed in data breach notification letters despatched to affected clients on Might 1 that attackers stole the info of an undisclosed variety of people after getting access to some 7-Eleven techniques in early April.

“We just lately found that on April 8, 2026, an unauthorized third occasion gained entry to sure 7-Eleven techniques used to retailer franchisee paperwork,” 7-Eleven stated.

Whereas 7-Eleven has not attributed the assault to a particular hacking group or risk actor and has not shared additional particulars on the incident, the ShinyHunters extortion gang claimed accountability for the assault on April 17.

The cybercriminals claimed to have stolen over 600,000 information containing company information and personally identifiable info after breaching 7-Eleven’s Salesforce setting. They then leaked a 9.4GB archive of paperwork on their darkish net leak website after the corporate refused to pay a ransom to have the stolen information returned and destroyed.

Though a 7-Eleven spokesperson did not reply when BleepingComputer reached out to substantiate ShinyHunters’ claims and share the variety of affected people, Have I Been Pwned analyzed the info leaked by the cybercrime group and stated the breach uncovered the info of 185,300 individuals, together with names, dates of start, distinctive e mail addresses, cellphone numbers, and bodily addresses.

“The incident uncovered 185k distinctive e mail addresses, together with names, bodily addresses, dates of start and cellphone numbers. A small variety of information additionally contained further uncovered information fields,” it stated. “The corporate later suggested the breach was restricted to ‘sure 7-Eleven techniques used to retailer franchisee paperwork,’ a press release in line with the uncovered information.”

7-Eleven Denmark additionally confirmed it was the sufferer of a ransomware assault in August 2022, after the attackers encrypted a few of its techniques and compelled the chain to close down 175 shops.

ShinyHunters has been concentrating on Salesforce clients for the previous yr and breached lots of of firms, claiming they’ve stolen billions of information within the Salesforce Aura information theft assaults and the Salesloft Drift marketing campaign.

Different breaches just lately claimed by ShinyHunters embody the European Fee, video service Vimeo, Spanish fast-fashion retailers Zara and MANGO, edtech big McGraw-Hill, house security big ADT, medical gadget maker Medtronic, PornHub, Rockstar Video games, on-line courting big Match Group, in addition to tech giants Cisco and Google.

Two weeks in the past, the FBI suggested ShinyHunters’ victims to not give in to the risk actors’ calls for, after beforehand warning that paying ransoms doesn’t assure that risk actors will not try to promote the stolen information to different cybercriminals or extort the victims once more.