Google says the group behind last year's Snowflake attack slurped data from one of its Salesforce instances

Google confirmed that criminals breached one of its Salesforce databases and stole info belonging to some of its small-and-medium-business customers.

In a late-Tuesday update to an earlier blog post, Google Threat Intelligence admitted that one of the Chocolate Factory's corporate Salesforce instances was among those looted by a gang it tracks as UNC6040, which is associated with ShinyHunters.

The intrusion occurred in June, and the Salesforce database stored "contact information and related notes for small and medium businesses," which ShinyHunters swiped "during a a small window of time before the access was cut off," according to the threat intel team.

"The data retrieved by the threat actor was confined to basic and largely publicly-available business information, such as business names and contact details," Google added.

Google declined to provide additional information about the break-in, including if the attackers demanded an extortion payment.

The admission about its own Salesforce database ...