Cybercriminals Steal 1,000,000,000 Sensitive Records From Salesforce Containing Personally Identiable Information: Report
Cybercriminals claiming ties to the “LAPSUS$” hacking group say they have stolen nearly 1 billion records from companies that use Salesforce, exposing vast amounts of personally identifiable information.
In a message to Reuters , the group, calling itself “Scattered LAPSUS$ Hunters,” insists it did not breach Salesforce’s internal systems.
Rather than directly exploiting Salesforce, its members say they targeted clients using the platform by deploying “vishing” attacks – voice phishing techniques in which attackers impersonate employees or technical staff and trick helpdesk workers into granting access.
They also claim to have used modified versions of Salesforce’s Data Loader tool to siphon data from compromised environments.
Salesforce has stated that there is “no indication the Salesforce platform has been compromised” and that the claims “do not appear tied to any known vulnerability in our technology.”
The company says it is working with affected customers to provide support and is investigating the extortion attempts.
The hackers published a dark-web leak site listing around 40 companies they claimed to have breached, though it remains unclear whether all are actual Salesforce users.
Law enforcement in the U.K. previously arrested four individuals under age 21 in connection with earlier attacks on British retailers, and cybersecurity researchers believe this operation may be tied to a wider criminal ecosystem known as “The Com.”
John Hultquist, an analyst at Google’s cybersecurity arm, warned earlier this year that US retailers are now facing cyberattacks involving ransomware and extortion tactics, similar to what UK businesses have just been contending with.
Says Google in a recent blog post,
“After shifting to ransomware and data theft extortion in early 2023, they impacted organizations in a broader range of industries. Since then, we have regularly observed UNC3944 conduct waves of targeting against a specific sector, such as financial services organizations in late 2023 and food services in May 2024. Notably, UNC3944 has also previously targeted prominent brands, possibly in an attempt to gain prestige and increased attention by news media.”
Generated Image: Midjourney
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
DeFi's Automation Shortfall Addressed: Orbs Introduces dSLTP to Achieve CeFi-Grade Risk Control
- Orbs launches dSLTP, a decentralized stop-loss/take-profit protocol for DEXs, bridging CeFi automation with DeFi. - The protocol automates risk management via on-chain orders, reducing real-time monitoring needs during volatility. - Built on Orbs' Layer-3 infrastructure, it enhances DEX functionality with CeFi-grade tools while maintaining decentralization. - This innovation addresses DeFi's automation gap, potentially driving DEX adoption and institutional-grade on-chain trading.
XRP Latest Updates: XRP ETFs Enhance Market Liquidity, Large Holder Sell-Offs Postpone Price Increases to 2026
- XRP ETFs launched in late 2025 (e.g., Grayscale's GXRP) expanded institutional access, but whale sales delayed price gains until 2026. - XRP traded near $2.12 as 41.5% of its supply remains in loss, with whale-driven volatility and structural supply imbalances persisting. - Ripple secured $500M institutional backing for XRP Ledger infrastructure, while projects like XRP Tundra accelerated tokenization plans. - XRP trails Ethereum in market cap ($129B vs. $373B) due to lack of smart-contract capabilities,
Dogecoin News Today: Grayscale's Alternative Coin ETFs Indicate Change: Bitcoin Withdrawals Differ from Rising Interest in Altcoins
- Grayscale launches GDOG and GXRP ETFs on NYSE, offering direct exposure to Dogecoin and XRP via spot ETPs. - ETFs convert private trusts to public offerings, aligning with industry trends to boost liquidity and attract institutional capital. - GXRP competes with existing XRP products ($422M inflows), while GDOG follows DOGE's rise to 9th-largest crypto by market cap. - SEC's "Project Crypto" framework and FalconX partnership strengthen Grayscale's position in regulated altcoin investment vehicles. - Altc
Bitcoin Update: Federal Reserve Postponements and $1.2 Billion ETF Withdrawals Trigger 26% Drop in Bitcoin Value
- Bitcoin falls 26% to $83,000 amid Fed's delayed rate-cut timeline and $1.2B ETF outflows, marking its longest losing streak since 2024. - Analysts warn of structural risks, with Bloomberg's Mike McGlone projecting a potential $10,000 drop and Cathie Wood revising bullish 2030 forecasts. - Market volatility intensifies as JPMorgan's index exclusion proposal sparks crypto sector backlash and S&P 500 defensive sector shifts highlight interconnected risks. - Fed's December rate-cut speculation and upcoming i
Trending news
MoreCrypto prices
More
