Google has confirmed that some customers' information has been stolen in recent database violations.
In a blog post late Tuesday, Google's Threat Intelligence Group said one of the Salesforce database systems used to store small business contact information and related notes was violated by a hacking group known as Shiny Hunters, officially designated as UNC6040.
“The data obtained by threat actors was limited to basic, largely public business information, such as business name and contact details,” the company said.
Google did not disclose the number of affected customers, and company spokespersons did not immediately respond to requests for comment. It is not clear whether the company has received communications such as ransom demand.
ShinyHunters is known for targeting large companies and cloud-based databases.
This is the latest in a series of violations targeted at Salesforce Cloud Systems, including the recent theft of customer data from Cisco and Airline Giant Qantas, including the recent theft of customer data from retail giant Pandora. According to a Google blog post, the ShinyHunters group relies on voice phishing techniques to grant corporate employees access to cloud-based Salesforce databases.
According to Google, the Shinyhunters group may be preparing a data leak site. It is used by some ransomware gangs to publish stolen data and force corporate victims to pay ransoms. This group is said to overlap with other groups, including COM, which uses hacking, fear tor and sometimes violence threats to infiltrate the network.
Do you know more about Google Data Breach? Have you been notified by Google? Please contact this reporter securely via a message encrypted with Zackwhittaker.1337.