7-eleven.com data breach

7-eleven.com

What Happened

In April 2026, the ransomware group ShinyHunters claimed responsibility for breaching 7-eleven.com, a U.S.-based retail convenience store chain, with the incident discovered around April 20, 2026 (one source notes April 17). The attackers allegedly exfiltrated sensitive customer data, including names, emails, phone numbers, birthdays, and potentially over 600,000 Salesforce records containing PII and internal corporate information, though one report specifies 286,817 rows exposed; leak size is otherwise listed as unknown. This attack was part of ShinyHunters’ broader campaign targeting around 40 organizations like Zara and Carnival, focusing on data theft rather than encryption, with threats to publish the stolen information indefinitely on criminal platforms. No confirmation of ransom payment or full breach scope from 7-Eleven is available in reports.

Compromised Assets

  • email
  • password
  • full name
  • phone
  • ip

Check your company's
exposed credentials

Enter your work email to instantly access a free account
and see your company’s exposed credentials.

Related Breaches