Google has confirmed that customer data was stolen in a recent breach of one of its Salesforce-based databases. According to a blog post by Google’s Threat Intelligence Group, the breach affected a system used to manage contact details and notes for small and medium-sized businesses. The attack has been linked to the hacker group ShinyHunters, also known as UNC6040.
Google stated that the compromised data was limited to basic business information like company names and contact details, most of which is publicly accessible. However, the company did not reveal how many customers were affected, and spokesperson Mark Karayan declined to provide further comment beyond the blog post. It’s unclear whether Google received any ransom demand or other communication from the attackers.
ShinyHunters is known for targeting large organizations and their cloud databases. This breach follows similar Salesforce-related incidents involving companies like Cisco, Qantas, and Pandora. Google explained that the attackers used voice phishing techniques to trick employees into giving access to the system.
The blog also noted that ShinyHunters may be preparing a data leak site to publish stolen information, a common tactic used for extortion. The group reportedly has ties to other cybercriminal collectives, including The Com, which has a history of using hacking, threats, and extortion to compromise networks.
Found this article interesting? Follow us on X(Twitter) ,Threads and FaceBook to read more exclusive content we post.
