Google Warns of Vishing and Data Theft Attacks Targeting Salesforce

June 4, 2025 at 03:05 PM

•

1 min read

Google Warns of Vishing and Data Theft Attacks Targeting Salesforce — Photo: theregister.com

TL;DR Summary

A cybercriminal group called UNC6040 has targeted around 20 organizations across various sectors in the Americas and Europe using fake IT support calls to trick employees into installing malicious versions of Salesforce's Data Loader, leading to data theft and extortion. The group employs voice-phishing tactics, impersonating IT support to gain access to Salesforce and other platforms, with some attacks resulting in long-term data exfiltration and potential partnerships with other threat actors. Salesforce has issued guidance on protecting against such social engineering attacks.

Topics:business #cybersecurity #extortion #fake-it-support #salesforce-data-theft #scattered-spider #voice-phishing

Share this article

Fake IT support calls hit 20 orgs, end in stolen Salesforce data and extortion, Google warns theregister.com
Google Exposes Vishing Group UNC6040 Targeting Salesforce with Fake Data Loader App The Hacker News
Google Warns Hackers Stealing Salesforce Data From Companies Bloomberg
Hackers abuse modified Salesforce app to steal data, extort companies, Google says Reuters
Google: Hackers target Salesforce accounts in data extortion attacks BleepingComputer

Reading Insights

Total Reads

Unique Readers

Time Saved

3 min

vs 4 min read

Condensed

87%

618 → 82 words

Want the full story? Read the original article

Read on theregister.com

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights