Hackers Group claims to have stolen 1,000 million records of Customer Databases of Salesforce

A group of hackers, known as names like Lapse $, Scattered Spider and Shinyhuntershas launched a website on the Dark Web to extort companies that store customer data in databases in the Salesforce cloud. According to the attackers, they have obtained around 1,000 million records and threaten to publish them if they do not receive a ransom.

There are a list of important companies affected

The portal, called Scattered Lapsus $ Hunterswas detected by security researchers and reported by Techcrunch. In it, hackers invite affected companies to contact them to “recover control over data governance and avoid public dissemination.” The message emphasizes that all communications will be verified and treated with discretion.

Among the companies that have confirmed data theft are Allianz Life, Google, Kering, Qantas, Stellantis, Transunion and Workday. Other possible affected listed on the site include Fedex, Hulu and Toyota Motorsalthough some of these companies have not responded to requests for comments.

The site specifically mentions Salesforce And it demands that the company negotiate a rescue, warning that if you do not, its clients’ data could be filtered publicly. So far, there is no confirmation that Salesforce has started conversations with hackers, and the company has not responded to requests for comments.

According to the same source, this type of extortion reflects a change in the tactics of organized cybercrime groups. While before they focused on Staple data and request private bailoutsnow they threaten directly with the publication of stolen information. Apparently, security analysts had anticipated for weeks the possible creation of this type of site to press the victims to pay.

In any case, data leaks are common, since for companies confidential information is an asset with a lot of value. Already in the past we talk about huge password leaks, some of them with up to 16,000 million records.