|
Dear Public School Unit Leader,
Here is what we learned from Infinite Campus this evening:
On the afternoon of Wednesday, March 18, 2026, an unauthorized actor gained access to an Infinite Campus employee's Salesforce account. Salesforce is the company's internal case management and ticketing system — it is not the student information system itself. Infinite Campus's IT and Security teams detected the intrusion, and the account was immediately disabled.
The following points are critical for your awareness:
- According to Infinite Campus, no student information was breached. Infinite Campus's investigation indicates the unauthorized actor did not access any customer databases. The target was Infinite Campus's internal Salesforce instance, which contained names and contact information for school staff — directory information commonly found on school websites.
- We do not have confirmation at this time that North Carolina's system was impacted. Infinite Campus is actively scanning all Salesforce data that may have been accessed and will contact districts directly if any additional concern is found.
- As a precaution, Infinite Campus disabled certain services for customers that did not have Internet Protocol (IP) address restrictions in place. Support teams are actively working to reactivate those services.
The North Carolina Department of Public Instruction is in direct communication with Infinite Campus and has a team that is actively monitoring this situation. We will keep you updated as additional information is available. If your district is experiencing service disruptions or has specific concerns, please contact your certified Infinite Campus support organization or team.
We take the security of our shared systems seriously and will continue to keep you informed as this situation develops.
|
|
 Maurice "Mo" Green
Superintendent, NC Department of Public Instruction
|
|
|
|