Google has fallen victim to Salesforce data breaches linked to the ShinyHunters group, highlighting ongoing social engineering and extortion attacks. The breach involved publicly available contact data, but threat actors continue to target high-profile organizations for ransom or data sale. #ShinyHunters #UNC6040 #Google #Salesforce
Keypoints
- ShinyHunters is responsible for recent Salesforce data theft attacks affecting multiple companies.
- Googleβs Salesforce instance was breached, exposing basic business contact information.
- The threat actors utilize vishing and social engineering to infiltrate Salesforce systems.
- Victims are extorted via email, with some paying ransom to prevent data leaks.
- High-profile organizations like Adidas, Qantas, and Tiffany & Co. are targeted in these campaigns.