In a troubling development for Google, the tech giant confirmed late Tuesday that hackers breached one of its Salesforce database systems, compromising customer information. The breach, detailed in a blog post by Google’s Threat Intelligence Group, targeted a database used to store contact information and related notes for small and medium-sized businesses. The hacking group responsible, known as ShinyHunters (formally designated UNC6040), is notorious for infiltrating cloud-based systems of major corporations.
According to Google, the stolen data was limited to “basic and largely publicly available business information, such as business names and contact details.” However, the company did not disclose the number of affected customers, leaving the scale of the breach unclear. Google spokesperson Mark Karayan declined to provide further details beyond the blog post, and it remains unknown whether the company has received any ransom demands or other communications from the hackers.
ShinyHunters has built a reputation for targeting high-profile companies, with recent attacks on Cisco, Qantas, and Pandora, as reported by Bleeping Computer. The group employs sophisticated voice phishing (vishing) techniques, tricking employees into granting access to sensitive cloud-based Salesforce databases. This latest breach adds to a growing list of incidents exploiting Salesforce systems, raising concerns about the security of cloud infrastructure relied upon by businesses worldwide.
Google’s Threat Intelligence Group warned that ShinyHunters is likely preparing a data leak site, a common tactic used by ransomware gangs to publish stolen data and pressure victims into paying ransoms.
The breach underscores the persistent vulnerabilities in cloud-based systems, particularly as businesses increasingly rely on third-party platforms like Salesforce for critical operations. Cybersecurity experts are urging companies to strengthen employee training on phishing scams and implement multi-factor authentication to mitigate risks.
Google has not confirmed whether it is notifying affected customers, but the company’s silence on the matter has sparked concern among businesses that may have been impacted. As the investigation unfolds, the tech industry is bracing for potential fallout, with ShinyHunters’ track record suggesting that more breaches may be on the horizon.
Please follow us on Facebook and X for more news, tips, and reviews. Need cord cutting tech support? Join our Cord Cutting Tech Support Facebook Group for help. You can find Luke on X HERE.