Tag: Salesforce
-
A group of Salesforce hackers is demanding ransom while threatening to leak data from more than 700 companies. The attackers claim they accessed sensitive information through Salesforce-linked tools, putting global businesses at risk. What Happened The syndicate, calling itself Scattered LAPSUS$ Hunters, posted a ransom demand on the dark web. They warned Salesforce to negotiate…
-
The massive Salesforce breach campaign started on GitHub shows how attackers exploited repositories to steal OAuth tokens. This supply-chain attack began with unauthorized access to Salesloft’s GitHub and spread into Salesforce environments, exposing sensitive data across hundreds of organizations. How the Breach Unfolded Between March and June 2025, attackers gained access to Salesloft’s GitHub account.…
-
Salesforce attackers threaten Google and FBI after a major supply-chain compromise linked to Salesloft Drift. The cybercriminal groups behind the breach—ShinyHunters, LAPSUS$, and Scattered Spider—demanded an end to ongoing investigations while claiming access to sensitive systems. Who the Attackers Are The coalition of groups declared themselves “invincible” in a public statement. They demanded Google dismiss…
-
Hackers have launched a large-scale attack on Salesforce environments by abusing stolen access tokens. The breach, linked to the Salesloft Drift integration, highlights the growing risks of third-party apps in enterprise platforms. How the Attack Unfolded Between August 8 and August 18, 2025, a threat group known as UNC6395 used compromised OAuth tokens to access…