What Happened
In May 2026, HVAC/R wholesale distributor Baker Distributing Company (bakerdist.com) was compromised in a cyberattack claimed by the ShinyHunters data extortion group, who said they accessed the company’s SharePoint and Salesforce systems. Data later published in early June 2026 included about 103,000 unique email addresses (roughly 102,935–102.9k accounts) and related names, phone numbers, physical addresses, and HVAC support/contractor tickets, largely corporate contact and support information with limited sensitivity and no passwords. Ransomware.live reported ShinyHunters claiming exposure of over 260,000 Salesforce records containing PII and internal corporate data, though only around 100k accounts are confirmed in public breach datasets.
