Hundreds of Salesforce customer orgs hit in clever attack with potentially huge blast radius

A threat group Google tracks as UNC6395 has pilfered troves of data from Salesforce corporate instances, in search of credentials that can be used to compromise those organizations’ environments. “[Google Threat Intelligence Group] observed UNC6395 targeting sensitive credentials such as Amazon Web Services (AWS) access keys (AKIA), passwords, and Snowflake-related access tokens,” the company’s incident responders shared. How did UNC6395 access Salesforce instances? Salesforce is a cloud-based customer relationship management platform. To access the targeted … More → The post Hundreds of Salesforce customer orgs hit in clever attack with potentially huge blast radius appeared first on Help Net Security.
http://news.poseidon-us.com/TMk72p

Hundreds of Salesforce customer orgs hit in clever attack with potentially huge blast radius

Like this:

Related

More Posts

ISC Stormcast For Thursday, August 28th, 2025 https://isc.sans.edu/podcastdetail/9590, (Thu, Aug 28th)

Swinburne Uni folds DocuSign into processes across organisation

Google tightens Android developer verification

Western Sydney University targets file-sharing sites hosting stolen data

Don’t fight the cyber-battle blindfolded

Post-Katrina reform law shapes FEMA staff’s public letter

Can federal cybersecurity keep up with the quantum threats that are coming?

CDC director Susan Monarez is out after less than a month on the job, federal officials say

Can federal cybersecurity keep up with the quantum threats that are coming?

IRS employees face Treasury watchdog audit over office attendance

Share this:

Like this:

Related

More Posts