Workday reports a data breach resulting from social engineering tactics targeting third-party CRM systems, exposing basic contact info of employees. The incident appears linked to a broader campaign affecting major organizations, potentially involving threat groups like Scattered Spider or ShinyHunters. #Workday #SocialEngineering
Keypoints
- The breach was caused by social engineering targeting Workdayβs third-party CRM system.
- Attackers obtained basic contact details such as names and email addresses.
- The campaign affected several large companies, including Adidas, Google, and Louis Vuitton.
- Workday confirmed no access to customer data or internal systems was compromised.
- Threat groups like Scattered Spider and ShinyHunters are suspected to be behind similar recent attacks.
Read More: https://www.securityweek.com/workday-data-breach-bears-signs-of-widespread-salesforce-hack/