Hackers abuse modified Salesforce app to steal data, extort companies, Google says
The hackers, tracked by the Google Threat Intelligence Group as UNC6040, have 'proven particularly effective at tricking employees' into installing a modified version of Salesforce's Data Loader, a proprietary tool used to bulk import data into Salesforce environments, the researchers said.
The hackers use voice calls to trick employees into visiting a purported Salesforce connected app setup page to approve the unauthorised, modified version of the app, created by the hackers to emulate Data Loader.
If the employee installs the app, the hackers gain 'significant capabilities to access, query, and exfiltrate sensitive information directly from the compromised Salesforce customer environments,' the researchers said.
The access also frequently gives the hackers the ability to move throughout a customer's network, enabling attacks on other cloud services and internal corporate networks.
Technical infrastructure tied to the campaign shares characteristics with suspected ties to the broader and loosely organized ecosystem known as 'The Com,' known for small, disparate groups engaging in cybercriminal and sometimes violent activity, the researchers said. A Google spokesperson told Reuters that roughly 20 organizations have been affected by the UNC6040 campaign, which has been observed over the past several months. A subset of those organisations had data successfully exfiltrated, the spokesperson said.
A Salesforce spokesperson told Reuters in an email that 'there's no indication the issue described stems from any vulnerability inherent in our platform.' The spokesperson said the voice calls used to trick employees 'are targeted social engineering scams designed to exploit gaps in individual users' cybersecurity awareness and best practices.'
The spokesperson declined to share the specific number of affected customers, but said that Salesforce was "aware of only a small subset of affected customers," and said it was "not a widespread issue." Salesforce warned customers of voice phishing, or "vishing," attacks and of hackers abusing malicious, modified versions of Data Loader in a March 2025 blog post.
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
India Today
34 minutes ago
- India Today
Trump wants 'capital back,' vows to evict homeless from Washington, DC
US President Donald Trump on Sunday pledged to remove homeless people from Washington, DC, and imprison criminals, despite the city's mayor disputing claims of rising a post on his Truth Social platform, Trump wrote, "The Homeless have to move out, IMMEDIATELY. We will give you places to stay, but FAR from the Capital. The Criminals, you don't have to move out. We're going to put you in jail where you belong."advertisementHe also shared images showing tents and littered streets in the city, adding, "I'm going to make our capital safer and more beautiful than it ever was before." "It's all going to happen very fast, just like the Border. We went from millions pouring in, to ZERO in the last few months. This will be easier -- Be prepared! There will be no MR. NICE GUY. We want our Capital BACK," he is scheduled to hold a press conference Monday focused on "stopping violent crime in Washington, DC." However, it remains unclear if details about the eviction plan will be announced BOWSER REFUTES TRUMP'S CLAIMWashington's Democratic mayor, Muriel Bowser, pushed back against Trump's remarks on Sunday. Appearing on MSNBC's The Weekend, she said, "It is true that we had a terrible spike in crime in 2023, but this is not 2023. We have spent over the last two years driving down violent crime in this city, driving it down to a 30-year low."Bowser noted Trump is "very aware" of the city's cooperation with federal law enforcement after their meeting in the Oval Office weeks IN DCThe Community Partnership, a local organisation addressing homelessness, estimates about 3,782 single adults experience homelessness on any given night in Washington, a city with a population of roughly 700,000. Most are housed in emergency shelters or transitional facilities, while approximately 800 remain response to a violent attack on a Trump administration staffer, the White House confirmed deploying 450 federal law enforcement officers across the city last weekend. Officials reported investigations into incidents including unlicensed pistol carrying, driving with suspended licences, and illegal dirt bike according to the city's police department's data, a 26% drop in violent crime in the first seven months of 2025 compared with last year, alongside a 7% decline in overall crime.- EndsWith inputs from Reuters
Economic Times
5 hours ago
- Economic Times
Police say 8 killed, 3 injured at nightclub in Ecuador as violence surges
Synopsis A nightclub shooting in Ecuador's Guayas province resulted in eight fatalities and three injuries, marking the latest instance of violence in the country. Heavily armed suspects arrived on motorcycles and in vehicles, opening fire at the club in Santa Lucia. Reuters A shooting at a nightclub in Ecuador on Sunday killed eight people and injured three others in the latest violent incident to hit the spiralling South American country, authorities said. The shooting took place in the rural area of Santa Lucia in the coastal province of Guayas, considered one of the country's most dangerous. Seven of the victims, who were between 20 and 40 years old, died at the club and the eighth one at a hospital, according to a police statement. Authorities said the heavily armed suspects arrived on motorcycles and in two vehicles. It wasn't immediately known what prompted the shooting, which came two days after gunmen attacked a boat near El Oro province along the country's southwest coast. Four people were killed in that incident and several others remain missing after suspects launched explosives at the boat. Dozens of people have been killed in recent months, most of them in four of Ecuador's coastal provinces: El Oro, Guayas, Manabi and Los Rios. They all remain under a state of emergency. Authorities have blamed the wave of violence on disputes among organised crime groups linked to transnational drug cartels that have expanded their operations, especially in the Pacific region, where drugs are shipped to Central America, the United States and Europe. More than 4,600 people have been killed so far this year in the country of some 18 million inhabitants. Last year, nearly 7,000 killings were reported, down from more than 8,000 in 2023, a record number.
Time of India
5 hours ago
- Time of India
US market outlook: Wall Street braces for CPI test as rally nears record highs; analysts flag pullback risk; tariff impact in focus
Pic credit- AP A fresh look at US inflation trends this week is set to test Wall Street's record run, with several strategists warning that equities may be primed for a pullback after months of near-uninterrupted gains. The benchmark S&P 500 closed on Friday up more than 8% for the year and near all-time highs, while the Nasdaq Composite set a new record, rebounding from early August losses triggered by weak US jobs data, according to Reuters report. The rally has lifted the S&P 500 by 28% from its April low, calming fears of a tariff-driven recession that had spiked after President Donald Trump's 'Liberation Day' announcement earlier this year. Strategists at Deutsche Bank and Morgan Stanley have cautioned that the market's steep climb has pushed valuations to historically expensive levels as the seasonally weak August–September period begins. 'I do think the market is set up for a bit of a pullback. There's a lot of concern bubbling underneath,' said Dominic Pappalardo, chief multi-asset strategist at Morningstar Wealth. CPI report , Fed rate cuts and tariff risks The July consumer price index (CPI), due Tuesday, is forecast to have risen 2.8% year-on-year, according to a Reuters poll. Analysts say stronger-than-expected inflation could temper expectations of imminent interest rate cuts, even as futures markets price in a 90% chance of a September Fed cut and at least two cuts this year. Morgan Stanley's Michael Wilson warned that 'a softer payroll number with concerns of tariff-related inflation could be the recipe for … a correction, especially in the seasonally weak third quarter,' though he maintained a bullish 12-month outlook, saying 'we're buyers of pullbacks.' Tariffs at century-high average levels Trump's new import levies took effect on Thursday, raising the average US import duty to its highest in a century. Additional tariffs on semiconductor chips and pharmaceutical imports have been announced, while China could face higher duties on Tuesday unless a truce is extended. 'The market has kind of ignored the potential negative impact of this friction to the economy,' said Matt Rowe, senior portfolio manager at Man Group. 'The market has gotten comfortable with tariffs being kind of a non-event, which I don't think is correct.' Stay informed with the latest business news, updates on bank holidays , public holidays , current gold rate and silver price .
