Salesforce Data Breach Denied as Hackers Claim Theft of One Billion Records
A cybercriminal group linked to ransomware attacks on several major UK retailers has claimed responsibility for stealing nearly one billion records from cloud technology giant Salesforce. The group, calling itself “Scattered Lapsus Hunters,” asserted that the data includes personally identifiable information of users, according to a Reuters report.
Reuters, however, could not independently verify the group’s claims. Salesforce stated that its systems had not been compromised and that hackers had not exploited any vulnerabilities in their infrastructure.
One group member, known by the alias “Shiny,” told Reuters that they had not directly breached Salesforce itself but had instead targeted its client companies using “vishing” — or voice phishing — tactics.
The hackers also published a leak site on the dark web listing nearly 40 affected organizations. Google’s Threat Intelligence Group reported that the attackers used a modified version of Salesforce’s “Data Loader” tool to extract sensitive information.
In July, British police arrested four young individuals suspected of involvement in these cyberattacks. Salesforce confirmed that it is cooperating with authorities in the ongoing investigation.
