Data Extortion
-
FBI warns of UNC6040 and UNC6395 hackers targeting Salesforce to steal data and extort victims
The FBI has issued a FLASH alert about UNC6040 and UNC6395 hacking groups that are compromising Salesforce environments to steal data and extort victims, releasing IOCs to aid defense efforts across organizations and multiple cloud platforms.
-
Storm-0501 Debuts Brutal Hybrid Ransomware Attack Chain, Microsoft Warns
Microsoft Threat Intelligence warns Storm-0501 has deployed a brutal hybrid ransomware chain, exploiting hijacked privileged accounts to pivot between on‑prem and cloud, exfiltrate data, delete backups and encrypt remaining cloud resources, pressuring victims to pay or face potential shutdown.
-
Dell Confirms Breach by Rebranded Extortion Group World Leaks
Dell Technologies has confirmed a security breach of its Customer Solution Centers platform by the extortion group World Leaks, prompting concerns over the safety of company data as the group exploits the situation for ransom.
-
Scania Confirms Cybersecurity Breach Involving Compromised Credentials and Extortion Attempt
Scania has confirmed a cybersecurity breach that involved the theft of insurance claim documents using compromised credentials. The attack was followed by extortion attempts, with the attackers threatening to leak the data unless demands were met.
-
Hackers Exploit Voice Phishing to Breach Corporate Systems
A group of hackers known as UNC6040 is exploiting voice phishing to gain access to corporate systems, particularly targeting Salesforce, with tactics that rely on manipulating employees rather than exploiting technical vulnerabilities.
-
Google Warns of Data Extortion Attacks Targeting Salesforce Accounts
Google has alerted companies using Salesforce to the rise of social engineering attacks targeting their platforms, warning that hackers claiming affiliation with the ShinyHunters extortion group are using advanced phishing tactics to steal sensitive data.
