Infinite Campus Data Breach Exposes Student Records

Infinite Campus, a leading provider of web-based student information systems for K-12 schools in the United States, is the subject of a data breach claim that appeared on the dark web on March 22, 2026.

The total number of individuals potentially affected by this incident has not been disclosed.

What happened in the Infinite Campus data breach

On March 22, 2026, a threat actor known as ShinyHunters posted a claim on the Tor network alleging that it had breached Infinite Campus and stolen company data.

According to the dark web posting, ShinyHunters claims to have obtained and compromised Salesforce records belonging to Infinite Campus. The threat actor alleges that the compromised data includes personally identifiable information (PII) along with other internal corporate data.

The specific categories of PII that may be involved were not detailed in the posting. It is not known from the available information whether the alleged data includes highly sensitive details such as Social Security numbers, financial account information or other confidential records.

Infinite Campus' response to the breach

As of March 24, 2026, the available information does not include details about how Infinite Campus has responded to the breach claims made by ShinyHunters. It is not known at this time whether the company has confirmed or denied the alleged breach.

No information has been provided regarding whether Infinite Campus has launched a formal investigation into the incident, engaged third-party cybersecurity experts or reported the matter to law enforcement.

Because the specific types of personal information involved have not been detailed, the full scope and severity of the potential exposure remain unclear.

Individuals and organizations that rely on Infinite Campus products should monitor the company's website and official communications channels for any updates regarding the situation.

Steps to take if your information was exposed

• Monitor your credit reports regularly by requesting free copies at AnnualCreditReport.com and reviewing them carefully for any unfamiliar accounts, hard inquiries or other suspicious activity.
• Place a fraud alert or credit freeze with Equifax (1-800-525-6285), Experian (1-888-397-3742) and TransUnion (1-800-680-7289) to add a layer of protection against unauthorized accounts being opened.
• Change passwords on related accounts and turn on multi-factor authentication where possible, especially for accounts connected to education platforms, school systems or services linked to Infinite Campus.
• Watch for phishing attempts that reference Infinite Campus or this data breach by name, as scammers frequently exploit breach-related news to send convincing fake emails, text messages and phone calls designed to steal additional personal information.
• Review personal and financial accounts for any signs of unauthorized transactions or changes, and report anything suspicious to the relevant financial institution or service provider right away.