Sysco Hit by Second Extortion, 61 Million Records Stolen

Hackers Claim Theft of 61 Million Sysco Records in Massive Cyber Extortion Threat

• Sysco Faces New Cyber Crisis as Hackers Threaten to Leak 61 Million Records
• Millions of Sysco Records Allegedly Stolen in ShinyHunters Attack
• Cybercriminals Target Food Giant Sysco in Massive Salesforce Data Theft Claim
• ShinyHunters Says It Stole 61 Million Sysco Records Customers on Alert
• Sysco Hit by Second Extortion Threat as Hackers Claim Huge Data Haul
• Global Food Supplier Sysco Faces Potential Mega Breach After Hacker Claims
• 61 Million Records at Risk? Hackers Issue Ultimatum to Sysco
• Salesforce Data Under Attack Again as Sysco Becomes Latest Target
• Major Supply Chain Security Fears Emerge After Alleged Sysco Data Breach

One of the world’s largest food distribution companies is facing a major cybersecurity crisis after the notorious ShinyHunters hacking group claimed to have stolen more than 61 million Salesforce records from Sysco, potentially exposing customer, employee, and corporate data.

The claim marks the second major cyber extortion threat against Sysco in recent weeks and raises fresh concerns about the security of cloud-based business platforms used by some of the world’s largest organizations.

61 Million Records Allegedly Compromised

According to ShinyHunters, the alleged breach involves more than 61 million records stored across multiple Salesforce databases. The cybercriminal group claims the stolen information includes customer data, personally identifiable information (PII), employee records, and internal corporate data. However, no public evidence has yet been released to independently verify the full scope of the claims.

The hackers have reportedly issued Sysco a deadline to establish contact before the data is published on their leak site, a tactic frequently used in modern cyber extortion campaigns.

Why This Breach Could Have Major Consequences

Sysco is not an ordinary company. The food distribution giant supplies products and services to hundreds of thousands of customers across healthcare facilities, schools, government agencies, military installations, restaurants, hotels, airlines, stadiums, supermarkets, and other critical sectors.

If the alleged breach is confirmed, experts warn that exposure of customer and employee information could create opportunities for phishing attacks, identity theft, fraud, and business email compromise schemes targeting organizations that rely on Sysco’s vast supply chain network.

ShinyHunters Expands Its Salesforce-Focused Campaign

The alleged Sysco incident is the latest in a string of attacks linked to ShinyHunters, a cybercriminal group known for targeting organizations through cloud platforms and customer relationship management systems. Over the past year, the group has claimed responsibility for multiple large-scale data theft campaigns involving Salesforce environments and other cloud services.

Security researchers say many recent attacks have focused on exploiting misconfigured Salesforce environments, stolen credentials, social engineering, and phishing tactics to gain unauthorized access to valuable corporate data.

A Growing Threat to Enterprise Data

The incident highlights a broader trend worrying cybersecurity professionals worldwide. Rather than deploying traditional ransomware that encrypts systems, threat actors are increasingly stealing sensitive data and threatening to leak it publicly unless victims pay large extortion demands.

For businesses, the consequences can be severe, including regulatory scrutiny, legal action, reputational damage, and financial losses long after an attack has occurred.

Investigation Continues

At the time of reporting, the full extent of the alleged Sysco breach remains unconfirmed. Security teams and industry observers are closely monitoring developments to determine whether the hackers’ claims are legitimate and what data, if any, may have been exposed.

As cybercriminal groups continue to target enterprise cloud platforms, the Sysco case serves as another reminder that even global corporations remain vulnerable to increasingly sophisticated data theft and extortion operations.