The Federal Bureau of Investigation (FBI) has released a flash alert detailing the activities of two cybercriminal groups, UNC6040 & UNC6395, that are actively compromising Salesforce environments to steal data for extortion purposes. The advisory, published by the FBI on September 12, 2025, provides indicators of compromise (IOCs) and defensive measures to help organizations protect…
Google has acknowledged a data breach in one of its Salesforce systems carried out by the hacker group ShinyHunters. The breach, which occurred in early June, compromised one of Google’s internal Salesforce instances, exposing contact information and notes related to small and medium businesses. Back then, Google’s Threat Intelligence Group (GTIG) had already warned about…
Google is the latest company to suffer a data breach in an ongoing wave of Salesforce CRM data theft attacks conducted by the ShinyHunters extortion group. In June, Google warned that a threat actor they classify as ‘UNC6040′ is targeting companies’ employees in voice phishing (vishing) social engineering attacks to breach Salesforce instances and download customer data….
As organizations continue to migrate data to the cloud, where and how data is handled is becoming an important consideration. WithSecure’s Cloud Protection for Salesforce, a trusted, natively integrated solution that prevents attacks via files and URLs uploaded to Sales force Clouds is helping its customers manage these considerations by allowing them to select where…
