On April 8, 2026, an unauthorized party broke into 7-Eleven’s corporate systems and made off with files stored in the company’s Salesforce environment. The ShinyHunters extortion gang later claimed responsibility and, when 7-Eleven refused to pay, publicly leaked a 9.4 GB archive of stolen documents. The company has started notifying victims across multiple U.S. states, though it has not publicly said how many people are affected. ShinyHunters claims more than 600,000 records were taken.
The stolen data appears to include personally identifiable information that the company held for customers and franchisees. There is no indication that passwords or payment card numbers were part of the breach — but names, email addresses, and other account details are enough for scammers to craft convincing phishing emails. The FBI’s long-standing advice applies here: do not pay any follow-up ransom demands, since payment does not stop attackers from selling the data anyway.
How to check if you’re affected
Affected products include the 7-Eleven app and any loyalty or customer account registered with the company. If you have a 7Rewards account or have shopped online through 7-Eleven:
- Change your 7-Eleven account password to a unique one you don’t use anywhere else.
- Watch your inbox for unusual messages — phishing emails referencing your name or purchase history are a red flag.
- If you used the same password elsewhere, change it on those sites too.