Cybercriminals Steal 1,000,000,000 Sensitive Records From Salesforce Containing Personally Identiable Information: Report
Cybercriminals claiming ties to the “LAPSUS$” hacking group say they have stolen nearly 1 billion records from companies that use Salesforce, exposing vast amounts of personally identifiable information.
In a message to Reuters , the group, calling itself “Scattered LAPSUS$ Hunters,” insists it did not breach Salesforce’s internal systems.
Rather than directly exploiting Salesforce, its members say they targeted clients using the platform by deploying “vishing” attacks – voice phishing techniques in which attackers impersonate employees or technical staff and trick helpdesk workers into granting access.
They also claim to have used modified versions of Salesforce’s Data Loader tool to siphon data from compromised environments.
Salesforce has stated that there is “no indication the Salesforce platform has been compromised” and that the claims “do not appear tied to any known vulnerability in our technology.”
The company says it is working with affected customers to provide support and is investigating the extortion attempts.
The hackers published a dark-web leak site listing around 40 companies they claimed to have breached, though it remains unclear whether all are actual Salesforce users.
Law enforcement in the U.K. previously arrested four individuals under age 21 in connection with earlier attacks on British retailers, and cybersecurity researchers believe this operation may be tied to a wider criminal ecosystem known as “The Com.”
John Hultquist, an analyst at Google’s cybersecurity arm, warned earlier this year that US retailers are now facing cyberattacks involving ransomware and extortion tactics, similar to what UK businesses have just been contending with.
Says Google in a recent blog post,
“After shifting to ransomware and data theft extortion in early 2023, they impacted organizations in a broader range of industries. Since then, we have regularly observed UNC3944 conduct waves of targeting against a specific sector, such as financial services organizations in late 2023 and food services in May 2024. Notably, UNC3944 has also previously targeted prominent brands, possibly in an attempt to gain prestige and increased attention by news media.”
Generated Image: Midjourney
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
UAE's regulatory initiatives set the stage for a surge in institutional DeFi adoption
- DWF Labs commits $75M to DeFi projects enhancing institutional-grade infrastructure across Ethereum , BNB Chain, and Solana . - UAE's new Central Bank Law mandates licensing for DeFi protocols, balancing innovation with regulatory oversight and consumer protection. - Doma Protocol and ORA introduce liquid domain trading and cash-flow-driven models, expanding DeFi's functional scope beyond speculative tokenomics. - Institutional adoption faces hurdles including regulatory uncertainty, smart contract risks
Bitcoin Updates: Spot Bitcoin ETFs Fuel Surge as Major Holders Resume Accumulation
- Bitcoin's rebound above $90,000 triggered a $3.2B ETF profit turnaround, driven by BlackRock's IBIT and $21M inflows. - Whale accumulation (0.8 score) and retail buying since July signal $80,000 as a potential crypto bottom, supported by ETF cost bases. - Bullish technicals include record whale vs. retail deltas and neutralizing CVD, mirroring 2024's $75K bottom patterns. - Market fragility persists with Ethereum's Death Cross, XRP's $2.30 resistance, and Solana's $36M Upbit hack aftermath. - Traders foc
Webster, NY's Industrial Revival: The Impact of $9.8 Million in Infrastructure Investment on Upstate Real Estate Markets
- Webster , NY, is transforming a 300-acre Xerox brownfield into a high-tech industrial hub via a $9.8M FAST NY grant and state-backed programs. - Infrastructure upgrades, including road and grid modernization, have slashed vacancy rates to 2%, attracting $650M investments and 250+ jobs. - The redevelopment boosts residential property values by 10.1% annually and supports Governor Hochul’s plan to decentralize manufacturing. - Investors benefit from low vacancy rates and state initiatives, with industrial
Zcash Latest Updates: Crypto in 2025—The Paradox of Progress Amid Rising Regulatory and Security Hurdles
- Grayscale's Zcash ETF filing highlights growing institutional interest in privacy coins, with ZEC surging over 1,000% year-to-date. - BNB's price decline below $900 contrasts with Zcash's rise, exposing divergent crypto market dynamics between privacy and utility tokens. - Securitize's EU-approved tokenized securities platform on Avalanche aims to digitize $18 trillion in assets by 2033, pending regulatory alignment. - ALT5's volatile treasury model and Upbit's $36M hack underscore 2025's dual-edged inno
Trending news
MoreCrypto prices
More
