Workiva experienced a data breach caused by third-party CRM system access, leading to the theft of some customer contact information. The incident is linked to a larger wave of Salesforce-related breaches carried out by the ShinyHunters group, emphasizing the ongoing threat to high-profile organizations. #ShinyHunters #SalesforceDataBreaches
Keypoints
- Workiva notified customers of unauthorized access to its third-party CRM system resulting in data theft.
- Threat actors exfiltrated business contact details but did not access the core Workiva platform.
- The incident is part of a broader series of Salesforce data breaches linked to the ShinyHunters group.
- ShinyHunters has used techniques like vishing and stolen OAuth tokens to breach Salesforce and cloud services.
- High-profile companies like Google, Cisco, and LVMH subsidiaries have been targeted in these attacks.