Google Discloses Data Breach via Salesforce Hack
securityweek
Google revealed on Tuesday that one of its corporate Salesforce instances was targeted by threat actors. The attack appears to be part of a campaign that has hit several major companies.
The tech giant said its Salesforce instance was targeted in June and attributed the activity to a threat group tracked as UNC6040.
Google said the hackers obtained contact information and related notes for small and medium businesses from the compromised environment.
“Analysis revealed that data was retrieved by the threat actor during a small window of time before the access was cut off,” Google explained. “The data retrieved by the threat actor was confined to basic and largely publicly available business information, such as business names and contact details.”
Google warned in early June that UNC6040, a threat actor specializing in voice phishing, had targeted Salesforce customers in a large-scale data theft and extortion campaign.
Google reported at the ...
Copyright of this story solely belongs to securityweek . To see the full text click HERE