THE DataBreaches piece reports that the ShinyHunters’ claim of a breach affecting Infinite Campus is being treated as less concerning, as it concerned only Salesforce data and not student or employee databases. The incident involved an unauthorized access to an Infinite Campus employee’s Salesforce account, on the afternoon of Wednesday, 18 March 2026, with the account immediately disabled by Infinite Campus’ IT and Security teams.
According to Infinite Campus, no student information was breached and the investigation suggests the attacker did not access any customer databases; the target was the internal Salesforce instance containing names and contact information for school staff. There is currently no confirmation that North Carolina’s system was impacted, though Infinite Campus is actively scanning Salesforce data and will notify districts if any concerns arise.
As a precaution, Infinite Campus disabled certain services for customers lacking IP address restrictions, with support teams working to reactivate those services. The North Carolina Department of Public Instruction is in direct communication with Infinite Campus and has a monitoring team overseeing the situation, and a bulletin from Maurice “Mo” Green on 22 March 2026 provided the initial notice.