#salesforce-breach tag

1.5 billion Salesforce records stolen according to ShinyHunters

ShinyHunters exfiltrated over 1.5 billion Salesforce records from 760 companies via compromised Salesloft OAuth tokens and used the data to extort victims.

fromSecurityWeek

2 days ago

Security Industry Skeptical of Scattered Spider-ShinyHunters Retirement Claims

Some of the recent attacks attributed to Scattered Spider also appear to have involved ShinyHunters, a cybercrime group specializing in extortion. The two groups are believed to have merged. In a message posted online last week, Scattered Spider and ShinyHunters announced their retirement. A lengthy manifesto mentions recent high-profile hacks and taunts law enforcement. "Our objectives having been fulfilled, it is now time to say goodbye," the hackers said.

Information security

fromDataBreaches.Net

3 days ago

Update: Kering confirms Gucci and other brands hacked; claims no conversations with hackers? - DataBreaches.Net

Millions of customers of Kering brands had personal data accessed in two Salesforce breaches, with alleged ransom negotiations and partial disclosure to authorities and customers.

Information security

fromApp Developer Magazine

8 months ago

Salesforce data breach linked to Tenable via Salesloft Drift

A Salesforce-Salesloft Drift integration breach exposed limited customer contact and support case data at multiple organizations, including Tenable, while core product data remained uncompromised.

#supply-chain-attack

fromThe Hacker News

2 weeks ago

Information security

Salesloft Takes Drift Offline After OAuth Token Theft Hits Hundreds of Organizations

fromTechzine Global

2 weeks ago

Information security

Hackers steal customer data from Zscaler via Salesloft leak

fromThe Hacker News

2 weeks ago

Information security

Salesloft Takes Drift Offline After OAuth Token Theft Hits Hundreds of Organizations

fromTechzine Global

2 weeks ago

Information security

Hackers steal customer data from Zscaler via Salesloft leak

more#supply-chain-attack

Information security

fromZDNET

2 weeks ago

'2.5 billion Gmail users at risk'? Entirely false, says Google

Google did not issue a broad warning about a Gmail breach; attackers targeted Salesforce cloud data and phishing/vishing threats remain active.

Information security

fromTheregister

3 weeks ago

Google links Salesforce data thefts to Salesloft breach

Attackers stole OAuth tokens from the Drift app used by Salesloft to access Salesforce databases and exfiltrate sensitive credentials and customer records.

Information security

fromApp Developer Magazine

8 months ago

Salesforce breach let hackers steal Google customer data

A Google corporate Salesforce instance was breached by UNC6040, exposing basic business contact data, prompting impact analysis and mitigation while extortion campaigns (UNC6240/ShinyHunters) emerged.

#salesforce-breach#salesforce-breach

1.5 billion Salesforce records stolen according to ShinyHunters

Security Industry Skeptical of Scattered Spider-ShinyHunters Retirement Claims

Update: Kering confirms Gucci and other brands hacked; claims no conversations with hackers? - DataBreaches.Net

Salesforce data breach linked to Tenable via Salesloft Drift

Salesloft Takes Drift Offline After OAuth Token Theft Hits Hundreds of Organizations

Hackers steal customer data from Zscaler via Salesloft leak

Salesloft Takes Drift Offline After OAuth Token Theft Hits Hundreds of Organizations

Hackers steal customer data from Zscaler via Salesloft leak

'2.5 billion Gmail users at risk'? Entirely false, says Google

Google links Salesforce data thefts to Salesloft breach

Salesforce breach let hackers steal Google customer data

#salesforce-breach
#salesforce-breach