Google confirms data breach after cyberattack on Salesforce database: What's leaked
The attackers used a social engineering technique where they impersonated IT support staff during phone calls, convincing employees to authorise malicious software connected to their Salesforce environment. This allowed the group to access and extract basic business contact details, most of which, Google says, were already publicly available, before the breach was detected and stopped.
Notably, the group behind the attack, UNC6040, is known for targeting Salesforce platforms by abusing tools like the 'Data Loader' app, a legitimate application that allows bulk data handling. In many cases, the hackers use fake versions of this app with misleading names, such as 'My Ticket Portal,' to avoid detection during the phishing calls.
In an evolving trend, the group has shifted from using official Salesforce tools to custom-made Python scripts for data theft, making it harder to trace their activity. They also reportedly use VPNs and the dark web network TOR to hide their identity and location.
Another linked group, UNC6240, has followed up on these data thefts with extortion attempts, often contacting company employees by email or phone, demanding bitcoin payments within 72 hours. These messages claim to be from the hacking group 'ShinyHunters,' a name familiar in the cybercrime world.
Google's threat intelligence unit believes the extortion group may soon launch a website to publicly leak stolen data, a common pressure tactic among cybercriminals.
The broader concern is that these attacks do not exploit flaws in Salesforce itself but rather human error, tricking employees into allowing access through seemingly routine IT support calls. Companies are being urged to tighten access controls, restrict permissions to sensitive tools, limit app installations, and train staff to recognise social engineering scams.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Hindustan Times
3 hours ago
- Hindustan Times
Woman arrested for demanding ₹1 crore hush money to withdraw ‘rape case'
MUMBAI: In a case involving betrayal, digital snooping and an alleged extortion attempt, the Charkop police on Wednesday arrested a woman who had earlier accused a married IT professional of rape — only to later demand a hefty sum of ₹1 crore to withdraw her complaint. The woman was arrested and produced before a magistrate. She has been remanded to police custody for eight days.(Representational) Police say the 40-year-old complainant, an IT employee living with his wife and son in Kandivali West, was allegedly in a long-term physical relationship with the woman, a former private bank employee he first met in 2012. By 2017, their meetings had become frequent. Despite knowing he was married, the relationship reportedly continued until it soured in 2022 when she asked him to marry her. He refused as he had never promised marriage, the man told police. In 2023, the woman filed a rape case against him at the Borivali police station. He was arrested and spent a month in jail. Under the law in India, rape accusations can lead to arrest even before the charges are proven in court — and despite the possibility of the case being false. Soon after the arrest, the woman and her brother allegedly reached out to the complainant's sister, offering to help secure his bail — but for a price. They reportedly demanded money in exchange for providing a no objection certificate (NOC) to aid his release. After he was granted bail, the woman approached him again. This time, she played the sympathy card, claiming she had acted out of anger and was now willing to withdraw the complaint. She said she needed to speak with her lawyers to begin the process. On February 1, 2024, the man met her lawyer in Fort. The woman allegedly demanded ₹1 crore to take back the rape complaint. When the man refused, she dropped the demand to ₹50 lakh. He still declined. The case took a darker turn in May. On May 10, 2024, she met the complainant again — and dropped a bombshell. She told him she knew everything about his finances: how much money he had, where it was spent, and even where his wife had invested. Alarmed, the man dug deeper and made a disturbing discovery: both of the woman's phone numbers were linked to his Google account. Through this unauthorised access, police say, she had been tracking his bank account details, OTPs, and possibly even passwords. She wasn't working alone. A bank employee from a different private bank — where the man held his account — was allegedly helping her gain access to confidential financial information. On January 3, 2025, the Charkop police registered an FIR against four people — the woman, her brother, her friend, and the bank employee — under several sections, including 308(7) (extortion) of the Indian Penal Code and 72A (punishment for disclosure of information in breach of lawful contract), 66(a) (sending offensive messages), 66(d) (cheating by personation using computer resource), 66(e) (violation of privacy) of the Information Technology Act, 2000. On Wednesday, the woman was arrested and produced before a magistrate. She has been remanded to police custody for eight days.
India Today
5 hours ago
- India Today
'Rape case', Rs 1 crore extortion: Bank staffer arrested for harassing ex-partner
An RBL Bank employee has been arrested in Mumbai for allegedly attempting to extort Rs 1 crore from her former partner by implicating him in a false rape case. She is accused of illegally accessing her ex-partner's financial data, getting him jailed and forcing him to quit his matter came to light when the accused, Dolly Kotak, demanded Rs 1 crore from the sister of her former partner, who is an IT professional, in court in exchange for a no-objection certificate for his bail. She warned of dire consequences if her demands weren't repeated refusals by the IT professional, Kotak continued to pressure him through frequent phone calls, eventually setting up a meeting at her lawyer's office where she reiterated her extortion demand of Rs 1 crore. The accused is accused of illegally accessing the personal and financial data of the IT professional and his wife with the help of bank employees. Kotak removed the mobile number associated with her ex-partner's account and Google and added her mobile number, which led to her receiving online banking details, GPS location history, and private photos and location May 2024, the IT professional received a threatening message from Kotak's number, which read, "You will never win and will die in pain. Pay money or die in jail..."This harassment also extended to his professional life when Kotak allegedly emailed his employer's human resources department, resulting in him being forced to resign under pressure and leaving the repeated harassment and no action from the police, the IT professional sought relief from the Borivali magistrate, who ordered the Charkop police to register an FIR under Section 175(3) of the Indian Civil Security Code (BNSS).Police registered a case against Kotak and two others, Pramila Vas, an HDFC Bank employee, and one Sagar Kotak in the case.- Ends IN THIS STORY#Mumbai
Time of India
7 hours ago
- Time of India
Croma announces Independence Day Sale 2025: Product deals, bank offers and more
Tata Group-owned retail chain Croma has announced its Independence Day Sale, which is currently live and runs until August 17. The retailer is offering deals and price reductions on a wide range of electronics. The sale includes a variety of products, from smartphones to televisions, refrigerators, and washing machines. Croma's Independence Day Sale is taking place across its more than 560 stores. Here are some of the best deals and bank offers that will be available during the sale event: Croma Independence Day Sale 2025: Product deals, bank offers and more Here's a list of the best deals available on different gadgets and appliances during the Independence Day Sale event: Smartphones: Nothing Phone 2a Plus (8GB+256GB) at an effective price of Rs 16,999 (MRP Rs 29,999), Realme 14 Pro Lite at Rs 19,999 Entertainment: 55-inch 4K QLED Google TV at just Rs 31,000 (MRP Rs 75,000) Home Appliances: Croma 7 kg Semi-Automatic Washing Machine at Rs 8,290 Refrigerator: 190L Direct Cool Refrigerator starting Rs. 11,990 Party Speaker with Mic starting Rs 2,999 Laptops: HP 15 Laptop at Rs 29,990 with exciting exchange and cashback deals Wearables & Audio: Attractive deals across smartwatches, wireless earbuds, and soundbars by Taboola by Taboola Sponsored Links Sponsored Links Promoted Links Promoted Links You May Like Enjoy 100% Pure New Zealand and fly Air New Zealand airnewzealand Undo For customers who want to purchase Apple products, the sale includes: iPhone 16 from just Rs 38,990, inclusive of store discount, coupons, bank cashback & exchange MacBook Air M4 at Rs 56,990 with student/teacher discount, exchange bonus, and cashback iPad 11th Gen from Rs 30,690 or Rs 1,360/month Apple Watch SE (GPS 40mm) from Rs 21,290 or Rs 2,586/month AirPods 4 from Rs 10,900 or Rs 499/month Croma is also offering additional bank discounts. These come on top of existing benefits like up to 10% instant discount for students and teachers, along with no-cost EMI options for up to 24 months. Meta's Secret AI Army: Top Talent Hired from OpenAI, Google & More AI Masterclass for Students. Upskill Young Ones Today!– Join Now
