Google confirmed a breach of one of its Salesforce databases accessible by a gang known as UNC6040, linked with ShinyHunters. The breach, which occurred in June, led to the theft of basic contact information from small and medium businesses. The stolen data was mainly publicly available, and the criminals may have used voice phishing tactics to access the database. Google also noted the likelihood of the gang developing a data-shaming site to further extort victims, aiming to increase pressure from their recent breaches.
Google confirmed that a breach of one of its Salesforce databases occurred in June, affecting small-and-medium-business customers and resulting in stolen contact information.
The data retrieved was basic business information, confined to public details like business names and contact information, taken during a brief window before access was halted.
The breach was linked to a gang tracked as UNC6040, associated with ShinyHunters, indicating that attackers may be using voice phishing or social engineering to gain access.
Threat actors linked to ShinyHunters may be preparing to escalate their tactics, potentially launching a data leak site to exert pressure on victims affected by the breach.
Collection
[
|
...
]