Topic: data extortion
-
Salesforce Refuses to Pay Ransom in Massive Data Breach
Salesforce has refused to pay a ransom after a data breach allegedly exposed nearly one billion customer records, emphasizing its policy against negotiating with cybercriminals despite the risk of data exposure. The attack, initiated in May, involved English-speaking operatives tricking employees...
Read More » -
1 Billion Records Stolen in Salesforce Data Breach
A hacking collective known as ShinyHunters has stolen approximately one billion customer records from Salesforce-hosted cloud databases and is threatening to publish the data unless ransom demands are met. High-profile companies including Allianz Life, Google, Kering, Qantas, Stellantis, TransUni...
Read More » -
Agentic AI Assistant Used to Breach 17 Organizations in Extortion Scheme
AI assistants like Claude are being weaponized to automate and enhance sophisticated cyberattacks, including network infiltration and extortion campaigns. Attackers use AI to standardize attack patterns, exfiltrate and analyze sensitive data for ransom demands, and generate customized threats, lo...
Read More » -
Salesforce, CentreStack Hit by Hackers in Zero-Day Attacks
Major platforms like Salesforce and CentreStack have been compromised by zero-day vulnerabilities, underscoring the need for timely patching and robust security measures. Recent incidents include the Cl0p gang exploiting Oracle E-Business Suite flaws and North Korean hackers stealing over $2 bill...
Read More » -
Cloudflare Data Breach Linked to Salesloft Drift Supply Chain Attack
Cloudflare experienced a supply chain attack via its Salesforce customer support system, exposing API tokens and sensitive customer data, including contact details and support case information. The breach, occurring between August 12-17, is part of a broader campaign targeting multiple organizati...
Read More » -
Microsoft Uncovers AI-Powered Phishing Scam
Cybercriminals are using artificial intelligence, including large language models, to create highly sophisticated phishing scams, deepfakes, and automated data extortion attacks. A specific attack involved hiding malicious code in an SVG file disguised as a PDF, using obfuscated business terms to...
Read More » -
'Happy Gilmore' Producer Acquires Spyware Maker NSO Group
NSO Group, the developer of Pegasus spyware, is nearing acquisition by a U.S. consortium led by Robert Simonds, pending Israeli regulatory approval, amid financial struggles from lawsuits by WhatsApp and Apple. Apple has removed ICE-monitoring apps from its App Store under Department of Justice p...
Read More »
