Workday, a provider of enterprise HR and financial management software, suffered a data breach via a social engineering attack targeting a third-party CRM platform. The compromised data mainly included contact information and could be exploited for further scams. #Workday #SocialEngineering #CRM
Keypoints
- Workdayβs cloud-based platform services over 11,000 organizations, including most Fortune 500 companies.
- The company disclosed a security breach resulting from a social engineering attack on a third-party CRM system.
- Attackers impersonated HR or IT staff to trick employees into revealing credentials or personal data.
- The breach primarily exposed business contact details like names, emails, and phone numbers.
- Workday emphasizes they will never contact users for secure information and has enhanced safeguards after the incident.