FBI Warns: Cybercriminal Groups Target Salesforce Users
Cybercriminal groups, known as UNC6040 (Scattered Spider) and UNC6395 (ShinyHunters), have been targeting Salesforce users. The FBI has issued warnings and provided indicators of compromise to help potential victims. The hackers, who have not been publicly named, are threatening to leak data and documents if extortion demands are not met in cryptocurrency.
The hackers exploited Salesloft Drift to bypass traditional security measures like multifactor authentication. They gained access to organizations through social engineering attacks, phishing, or exploiting third-party applications linked to Salesforce instances. The FBI advises companies to limit employee account privileges and monitor API usage to enhance security.
The groups have been active despite claiming retirement due to recent arrests. A critical government agency in Vietnam confirmed a data breach involving millions of financial records, attributed to ShinyHunters. Kering, the French conglomerate owning luxury brands like Gucci and Balenciaga, was also targeted, with 7.4 million unique email addresses compromised.
The FBI's warning serves as a reminder for organizations to bolster their social security measures. Despite the groups' claims of retirement, their activities continue, posing a significant threat to businesses and individuals. Companies are urged to stay vigilant and implement robust security protocols to protect against such cyber threats.
Read also:
- Dual-function mattress offers both cooling and coziness at an affordable price.
- Top-Notch Weed Killers for Fences in 2025: Efficient Boundary Management Solutions for a Clean Fence Line
- Automotive 2024 Event Highlights AI, Data, and Cybersecurity in Supply Chain
- United Kingdom should refrain from hastily deciding on hydrogen home heating, according to Scotland's appeal.
