Hacker stolen 1 billion records using Salesforce company

Cyber ​​attackers have stolen nearly a billion records from companies using US cloud service provider Salesforce. The group, which previously carried out ransomware attacks on UK retailers, has now targeted companies using Salesforce.

The group, known as the Scattered LAPSUS$ Hunters, said in a message to Reuters that it had obtained a large number of user records, including personally identifiable information.

A member of the hacker group said they were targeting companies using Salesforce, not Salesforce itself. The attackers used vishing, a method of impersonating employees over the phone to trick IT helpdesks.

The group posted information on the dark web on Friday, saying it had hacked about 40 other companies. It is not clear whether all of the companies were Salesforce customers.

Google's Threat Intelligence Group had previously been tracking the group under the name 'UNC6040'. According to researchers, the attackers managed to trick employees into using a modified version of Salesforce's 'Data Loader' tool.