Members of a financially motivated threat group are impersonating IT support staff in convincing phone calls and talking employees into granting access to their organization’s Salesforce environments.

A new Google Cloud Threat Intelligence report has revealed a sophisticated vishing campaign targeting Salesforce environments, enabling large-scale data theft and extortion. The operation, attributed ...

In an active campaign, a financially motivated threat actor is voice phishing (Vishing) Salesforce customers to compromise their organizational data and carry out subsequent extortion. Tracked as ...

The attacks linked to a threat group known as ShinyHunters have now compromised Google in addition to numerous other major companies. A wave of data-theft attacks against Salesforce CRM customers has ...

The ShinyHunters cybercrime collective has stolen corporate data from Google through the tech giant's Salesforce instance. On June 4, Google's Threat Intelligence Group stepped in to help. It ...

Compromised OAuth tokens through a third-party app have resulted in large-scale data raids on instances of the Salesforce customer relationship management (CRM) platform, by an unknown threat actor.

Add articles to your saved list and come back to them any time. Cloud software giant Salesforce has defended its security practices days after hackers published data from about 5.7 million Qantas ...

Google’s Salesforce breach by ShinyHunters in June 2025 exposed business info via voice phishing. Antoni Shkraba Studio: Pexels Google has confirmed a data breach involving one of its Salesforce ...

[WASHINGTON] Salesforce said on Thursday (Nov 20) that it is investigating “unusual activity” involving Gainsight-published applications that may have exposed customer data. In a brief statement ...