Google Confirms Customer Data Stolen in Salesforce Database Breach by ShinyHunters Hackers
Google has officially confirmed that a recent breach of one of its databases resulted in the theft of customer information. The incident highlights ongoing security challenges faced by major tech companies relying on cloud-based systems.
According to a blog post by Google’s Threat Intelligence Group, a Salesforce database system used for storing contact details and associated notes for small and medium-sized businesses was compromised. The hacking group identified as ShinyHunters, formally known as UNC6040, is believed to be responsible for the breach.
The compromised data is reported to be limited to basic business information, including company names and contact details, much of which is publicly available. Google has not disclosed the exact number of customers affected by the incident, nor has it confirmed whether any ransom demands have been received.
ShinyHunters is a known entity in the cybersecurity landscape, notorious for targeting large corporations and their cloud databases. This breach is the latest in a series of attacks exploiting Salesforce cloud systems, following similar incidents involving customer data from companies like Cisco, Qantas, and Pandora. These attacks have been widely reported, with sources indicating that ShinyHunters often employs voice phishing tactics to gain unauthorized access by tricking company employees into granting them entry to sensitive databases.
The Google Threat Intelligence report suggests that the ShinyHunters group may be preparing to launch a data leak site, a common tactic used by ransomware gangs to extort victim organizations by publishing stolen data. The group has also been linked to overlaps with other cybercriminal collectives, including ‘The Com,’ known for various illicit activities such as hacking, extortion, and network intrusions.
The incident serves as a stark reminder of the persistent threats in the digital landscape and the critical importance of robust cybersecurity measures for protecting sensitive business and customer data.
