Hackers Are Using a Modified Salesforce App to Trick Employees and Extort Companies, Google Says

Salesforce customers duped by series of social-engineering attacks

A financially motivated threat group posing as IT support has intruded the systems of about 20 organizations by duping employees into installing a malicious, illegitimate version of Salesforce’s Data Loader and granting broader access to cloud-based environments, Google Threat Intelligence Group said in a threat report released Wednesday. The attacks, which Google attributes to UNC6040, have hit organizations in hospitality, retail and education…

Hackers Abuse Modified Salesforce App to Steal Data, Extort Companies ...

Hackers are using a modified Salesforce app to trick employees and extort companies, Google says

Hackers are tricking employees at companies in Europe and the Americas into installing a modified version of a Salesforce-related app, allowing the hackers to steal reams of data, gain access to other corporate cloud services and extort those companies, Google said on Wednesday.

Hackers abuse modified Salesforce app to steal data, extort companies, Google says

(Reuters) -Hackers are tricking employees at companies in Europe and the Americas into installing a modified version of a Salesforce-related app, allowing the hackers to steal reams of data, gain access to other corporate cloud services and extort those companies, Google said on Wednesday.

Google Warns Hackers Stealing Salesforce Data From Companies

A hacking group has been impersonating IT personnel to break into companies’ Salesforce tools, using the access for data theft and extortion, according to a new report from Google’s threat intelligence group.

Google: Hackers target Salesforce accounts in data extortion attacks

Google has observed hackers claiming to be the ShinyHunters extortion group conducting social engineering attacks against multi-national companies to steal data from organizations' Salesforce platforms.