Google reported a security breach involving the theft of customer information from one of its Salesforce databases, specifically targeting small and medium businesses. The hacking group ShinyHunters accessed primarily publicly available business information, including names and contact details. The exact number of affected customers remains undisclosed, and communication regarding ransom demands is unclear. ShinyHunters utilizes voice phishing to gain access to cloud databases and is linked to similar breaches involving major corporations like Cisco and Qantas. They may also set up a data leak site to extort affected companies for ransom payments.
The data retrieved by the threat actor was confined to basic and largely publicly available business information, such as business names and contact details.
ShinyHunters is known for targeting big companies and their cloud-based databases, having previously stolen customer data from Cisco and Qantas.
The ShinyHunters group employs voice phishing techniques to trick company employees into granting access to their Salesforce databases.
Google stated that the ShinyHunters group is likely preparing a data leak site for publishing stolen data to extort corporate victims.
Collection
[
|
...
]