News

Security Boulevard2d

How New Supply Chain Attacks Challenge SaaS Security: Lessons from UNC6395, UNC6040, and ShinyHunters

SaaS supply chain attacks exploit SaaS-to-SaaS connections using stolen OAuth tokens. Get practical steps to reduce your risk ...

"Widespread data theft" hits Salesforce customers via third party

How the threat actor, tracked as UNC (uncategorised) 6395, obtained the OAuth tokens from Salesloft to exfiltrate data from customer Salesforce instances wasn't detailed. Saleslof ...

Google Confirms It Was Hacked After ‘Vishing’ Cyberattack; Is Your Data Compromised? Here’s What We Know

Per the Google Threat Intelligence Group report, the cybercrooks deployed a technique called ‘Vishing’ which is essentially ‘voice phishing.’ The hacker group would impersonate IT staff in this social ...
Scoop3mon

UNC6040 Hacks Salesforce Via Vishing And Malicious Data Loader Apps, Google Warns

A new Google Cloud Threat Intelligence report has revealed a sophisticated vishing campaign targeting Salesforce environments, enabling large-scale data theft and extortion. The operation, attributed ...
hcamag.com3mon

Hackers impersonating IT teams to steal Salesforce data, Google warns

Threat actors are impersonating IT personnel to lure employees into giving access to their organisation's Salesforce data through a malicious application, the Google Threat Intelligence Group (GTIG) ...

Salesloft: March GitHub repo breach led to Salesforce data theft attacks

Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in ...