News

The Hacker News21h

FBI Warns of UNC6040 and UNC6395 Targeting Salesforce Platforms in Data Theft Attacks

The U.S. Federal Bureau of Investigation (FBI) has issued a flash alert to release indicators of compromise (IoCs) associated ...
Security Boulevard4d

How New Supply Chain Attacks Challenge SaaS Security: Lessons from UNC6395, UNC6040, and ShinyHunters

SaaS supply chain attacks exploit SaaS-to-SaaS connections using stolen OAuth tokens. Get practical steps to reduce your risk ...
Scoop3mon

UNC6040 Hacks Salesforce Via Vishing And Malicious Data Loader Apps, Google Warns

A new Google Cloud Threat Intelligence report has revealed a sophisticated vishing campaign targeting Salesforce environments, enabling large-scale data theft and extortion. The operation, attributed ...
Security Boulevard3d

UNC6395 Hackers Accessed Systems via a GitHub Account, Salesloft Says

Security investigators from Google said UNC6395 hackers spent several months running through Salesloft and Drift systems before launching a data breach campaign that some security researchers say has ...
heise online3mon

Voice phishing against Salesforce users: data theft and blackmail

Google is monitoring a criminal group that uses voice phishing to trick Salesforce users. Data theft is followed by blackmail. A criminal group that Google's Threat Intelligence Group (GTIG) calls ...
hcamag.com3mon

Hackers impersonating IT teams to steal Salesforce data, Google warns

Threat actors are impersonating IT personnel to lure employees into giving access to their organisation's Salesforce data through a malicious application, the Google Threat Intelligence Group (GTIG) ...
telecom.economictimes.indiatimes3mon

Hackers abuse modified Salesforce app to steal data, extort companies, Google says

Hackers are tricking employees at companies in Europe and the Americas into installing a modified version of a Salesforce-related app, allowing the hackers to steal reams of data, gain access to other ...