Cybercriminal groups linked to ShinyHunters and Scattered Spider are extorting organizations after stealing sensitive data from Salesforce and other applications. The FBI warns that these sophisticated hackers use social engineering, phishing, and third-party app exploits to access and exfiltrate data, posing ongoing threats despite claims of disbanding. #ShinyHunters #ScatteredSpider #SalesforceExfiltration
Keypoints
- The FBI warns of extortion campaigns by hackers associated with ShinyHunters and Scattered Spider targeting Salesforce data.
- The hackers use social engineering, phishing, and exploiting third-party apps to gain access to organizations.
- The group has targeted major companies, including luxury brands like Gucci and retail distributors like Kering.
- The tactics evolved to bypass defenses by creating malicious apps within Salesforce and exploiting chatbot integrations.
- Experts caution that claims of disbanding are often temporary, with risks of reemerging under new identities.
Read More: https://therecord.media/fbi-warns-scattered-spider-salesforce