Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: threat Clear Filter

ShinyHunters claims 1.5 billion Salesforce records stolen in Drift hacks

bleepingcomputer.com Unknown 2025-09-22 01:11:06

The ShinyHunters extortion group claims to have stolen over 1.5 billion Salesforce records from 760 companies using compromised Salesloft Drift OAuth tokens. For the past year, the threat actors have been targeting Salesforce customers in data theft attacks using social engineering and malicious OAuth applications to breach Salesforce instances and download data. The stolen data is then used to extort companies into paying a ransom to prevent the data from being publicly leaked. These attacks

Topics: actors data drift threat used
Read More
Shop Amazon

Google confirms fraudulent account created in law enforcement portal

bleepingcomputer.com Unknown 2025-09-26 01:12:37

Google has confirmed that hackers created a fraudulent account in its Law Enforcement Request System (LERS) platform that law enforcement uses to submit official data requests to the company "We have identified that a fraudulent account was created in our system for law enforcement requests and have disabled the account," Google told BleepingComputer. "No requests were made with this fraudulent account, and no data was accessed." The FBI declined to comment on the threat actor's claims. This

Topics: actors data google group threat
Read More
Shop Amazon

Google confirms hackers gained access to law enforcement portal

bleepingcomputer.com Unknown 2025-09-26 21:12:37

Google has confirmed that hackers created a fraudulent account in its Law Enforcement Request System (LERS) platform that law enforcement uses to submit official data requests to the company "We have identified that a fraudulent account was created in our system for law enforcement requests and have disabled the account," Google told BleepingComputer. "No requests were made with this fraudulent account, and no data was accessed." The FBI declined to comment on the threat actor's claims. This

Topics: actors data google group threat
Read More
Shop Amazon

FBI warns of UNC6040, UNC6395 hackers stealing Salesforce data

bleepingcomputer.com Unknown 2025-09-28 10:56:40

The FBI has issued a FLASH alert warning that two threat clusters, tracked as UNC6040 and UNC6395, are compromising organizations’ Salesforce environments to steal data and extort victims. "The Federal Bureau of Investigation (FBI) is releasing this FLASH to disseminate Indicators of Compromise (IOCs) associated with recent malicious cyber activities by cyber criminal groups UNC6040 and UNC6395, responsible for a rising number of data theft and extortion intrusions," reads the FBI's FLASH advis

Topics: actors data salesforce threat used
Read More
Shop Amazon

An attacker’s blunder gave us a look into their operations

news.ycombinator.com Jamie Levy 2025-10-06 07:42:32

Figure 8: Threat actor starts to rely on automated workflows The threat actor also appeared to be interested in other AI tools to help with data generation and writing. We saw multiple Google searches for “free ai no signup” and for “csv generator ai.” We also saw the threat actor using Toolbaz AI, which is a writing assistant; the CSV spreadsheet generator feature of DocsBot AI, which is an AI chatbot tool; and the AI data generator feature of Explo AI, which is an embedded analytics tool.

Topics: actor attacker figure threat various
Read More
Shop Amazon

How An Attacker's Blunder Gave Us a Rare Look Inside Their Day-to-Day Operations

news.ycombinator.com Jamie Levy 2025-10-06 12:42:32

Figure 8: Threat actor starts to rely on automated workflows The threat actor also appeared to be interested in other AI tools to help with data generation and writing. We saw multiple Google searches for “free ai no signup” and for “csv generator ai.” We also saw the threat actor using Toolbaz AI, which is a writing assistant; the CSV spreadsheet generator feature of DocsBot AI, which is an AI chatbot tool; and the AI data generator feature of Explo AI, which is an embedded analytics tool.

Topics: actor attacker figure threat various
Read More
Shop Amazon

Salesloft: March GitHub repo breach led to Salesforce data theft attacks

bleepingcomputer.com Unknown 2025-10-09 01:43:30

Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in widespread Salesforce data theft attacks in August. Salesloft is a widely used sales engagement platform that helps companies manage outreach and customer communications. Its Drift platform is a conversational marketing tool that integrates chatbots and automation into sales pipelines, including integrations with platforms like Salesforce. The two have been at the cente

Topics: data drift salesforce salesloft threat
Read More
Shop Amazon

They know where you are: Cybersecurity and the shadow world of geolocation

bleepingcomputer.com Unknown 2025-10-15 21:02:12

Tony Soprano knew. When one of his follow poker players in season 5, episode 4 of The Sopranos asks Tony how he likes his new Cadillac Escalade, the fictional mobster responds, “I love it. After I pulled out that global positioning [system].” OK, his language was a little more spicy than “system,” but the point is that Tony knew the dangers of being trackable. The rest of us might not have the same concerns Tony had about being findable just about anywhere, but we should all realize how danger

Topics: attack attacks geolocation location threat
Read More
Shop Amazon

Palo Alto Networks data breach exposes customer info, support cases

bleepingcomputer.com Unknown 2025-10-18 03:00:00

Palo Alto Networks suffered a data breach that exposed customer data and support cases after attackers abused compromised OAuth tokens from the Salesloft Drift breach to access its Salesforce instance. The company states that it was one of hundreds of companies affected by a supply-chain attack disclosed last week, in which threat actors abused the stolen authentication tokens to exfiltrate data. BleepingComputer learned of the breach this weekend from Palo Alto Networks' customers, who expres

Topics: alto data networks salesforce threat
Read More
Shop Amazon

Palo Alto Networks data breach exposes customer info, support tickets

bleepingcomputer.com Unknown 2025-10-18 13:00:00

Palo Alto Networks suffered a data breach that exposed customer data and support cases after attackers abused compromised OAuth tokens from the Salesloft Drift breach to access its Salesforce instance. The company states that it was one of hundreds of companies affected by a supply-chain attack disclosed last week, in which threat actors abused the stolen authentication tokens to exfiltrate data. BleepingComputer learned of the breach this weekend from Palo Alto Networks' customers, who expres

Topics: alto data networks salesforce threat
Read More
Shop Amazon

Amazon disrupts Russian APT29 hackers targeting Microsoft 365

bleepingcomputer.com Unknown 2025-10-20 09:35:06

Researchers have disrupted an operation attributed to the Russian state-sponsored threat group Midnight Blizzard, which sought access to Microsoft 365 accounts and data. Also known as APT29, the hacker group compromised websites in a watering hole campaign to redirect selected targets "to malicious infrastructure designed to trick users into authorizing attacker-controlled devices through Microsoft’s device code authentication flow." The Midnight Blizzard threat actor has been linked to Russia

Topics: amazon apt29 authentication cloudflare threat
Read More
Shop Amazon

Malware devs abuse Anthropic’s Claude AI to build ransomware

bleepingcomputer.com Unknown 2025-10-24 09:08:08

Anthropic's Claude Code large language model has been abused by threat actors who used it in data extortion campaigns and to develop ransomware packages. The company says that its tool has also been used in fraudulent North Korean IT worker schemes and to distribute lures for Contagious Interview campaigns, in Chinese APT campaigns, and by a Russian-speaking developer to create malware with advanced evasion capabilities. AI-created ransomware In another instance, tracked as ‘GTG-5004,’ a UK-b

Topics: ai anthropic claude ransomware threat
Read More
Shop Amazon

Storm-0501 hackers shift to ransomware attacks in the cloud

bleepingcomputer.com Unknown 2025-10-25 21:38:12

Microsoft warns that a threat actor tracked as Storm-0501 has evolved its operations, shifting away from encrypting devices with ransomware to focusing on cloud-based encryption, data theft, and extortion. The hackers now abuse native cloud features to exfiltrate data, wipe backups, and destroy storage accounts, thereby applying pressure and extorting victims without deploying traditional ransomware encryption tools. Storm-0501 is a threat actor who has been active since at least 2021, deployi

Topics: cloud data microsoft ransomware threat
Read More
Shop Amazon

Salesloft breached to steal OAuth tokens for Salesforce data-theft attacks

bleepingcomputer.com Unknown 2025-10-28 12:12:53

Hackers breached sales automation platform Salesloft to steal OAuth and refresh tokens from its Drift chat agent integration with Salesforce to pivot to customer environments and exfiltrate data. The ShinyHunters extortion group claims responsibility for these additional Salesforce attacks. Salesloft's SalesDrift is a third-party platform that connects the Drift AI chat agent with a Salesforce instance, allowing organizations to sync conversations, leads, and support cases into their CRM. Acc

Topics: access attacks data salesforce threat
Read More
Shop Amazon

NordVPN deal: Get a two-year plan for up to 77 percent off

engadget.com Unknown 2025-11-01 00:41:25

There are dozens of VPNs to choose from, but to think they're all created equally would be a mistake. Some are better than others, and NordVPN sits squarely in the better category. Now, you can save up to 77 percent on most of NordVPN's plans. Arguably the best plan for most people is the NordVPN Plus plan, which you can get two years of access for only $108 right now. That's 73 percent off the usual rate, and NordVPN throws in an addition three months for free, so you're actually getting a 27-m

Topics: 77 nordvpn percent plan threat
Read More
Shop Amazon

Get up to 77 percent off NordVPN two-year subscriptions

engadget.com Unknown 2025-11-05 23:30:37

There are dozens of VPNs to choose from, but to think they're all created equally would be a mistake. Some are better than others, and NordVPN sits squarely in the better category. Now, you can save up to 77 percent on most of NordVPN's plans. Arguably the best plan for most people is the NordVPN Plus plan, which you can get two years of access for only $108 right now. That's 73 percent off the usual rate, and NordVPN throws in an addition three months for free, so you're actually getting a 27-m

Topics: 77 nordvpn percent plan threat
Read More
Shop Amazon

NordVPN deal: Get up to 77 percent off two-year plans

engadget.com Unknown 2025-11-16 12:20:35

There are dozens of VPNs to choose from, but to think they're all created equally would be a mistake. Some are better than others, and NordVPN sits squarely in the better category. Now, you can save up to 77 percent on most of NordVPN's plans. Arguably the best plan for most people is the NordVPN Plus plan, which you can get two years of access for only $108 right now. That's 73 percent off the usual rate, and NordVPN throws in an addition three months for free, so you're actually getting a 27-m

Topics: 77 nordvpn percent plan threat
Read More
Shop Amazon

Hackers leak Allianz Life data stolen in Salesforce attacks

bleepingcomputer.com Unknown 2025-11-22 22:03:47

Hackers have released stolen data belonging to US insurance giant Allianz Life, exposing 2.8 million records with sensitive information on business partners and customers in ongoing Salesforce data theft attacks. Last month, Allianz Life disclosed that it suffered a data breach when the personal information for the "majority" of its 1.4 million customers was stolen from a third-party, cloud-based CRM system on July 16th. While the company did not name the provider, BleepingComputer first repor

Topics: attacks data salesforce shinyhunters threat
Read More
Shop Amazon

Google confirms data breach exposed potential Google Ads customers' info

bleepingcomputer.com Unknown 2025-11-27 16:15:59

Google has confirmed that a recently disclosed data breach of one of its Salesforce CRM instances involved the information of potential Google Ads customers. "We're writing to let you know about an event that affected a limited set of data in one of Google's corporate Salesforce instances used to communicate with prospective Ads customers," reads a data breach notification shared with BleepingComputer. "Our records indicate basic business contact information and related notes were impacted by

Topics: actors data google salesforce threat
Read More
Shop Amazon

Black Hat 2025: Why your AI tools are becoming the next insider threat

venturebeat.com Louis Columbus 2025-11-30 11:35:56

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Cloud intrusions increased by 136% in the past six months. North Korean operatives infiltrated 320 companies using AI-generated identities. Scattered Spider now deploys ransomware in under 24 hours. However, at Black Hat 2025, the security industry demonstrated that it finally has an answer that works: agentic AI, delivering measurable resu

Topics: agentic ai security threat using
Read More
Shop Amazon

Google suffers data breach in ongoing Salesforce data theft attacks

news.ycombinator.com Unknown 2025-12-05 08:04:13

Google is the latest company to suffer a data breach in an ongoing wave of Salesforce CRM data theft attacks conducted by the ShinyHunters extortion group. In June, Google warned that a threat actor they classify as 'UNC6040' is targeting companies' employees in voice phishing (vishing) social engineering attacks to breach Salesforce instances and download customer data. This data is then used to extort companies into paying a ransom to prevent the data from being leaked. In a brief update to

Topics: actor attacks data google threat
Read More
Shop Amazon

Google suffers data breach in ongoing Salesforce data theft attacks

bleepingcomputer.com Unknown 2025-12-05 12:51:14

Google is the latest company to suffer a data breach in an ongoing wave of Salesforce CRM data theft attacks conducted by the ShinyHunters extortion group. In June, Google warned that a threat actor they classify as 'UNC6040' is targeting companies' employees in voice phishing (vishing) social engineering attacks to breach Salesforce instances and download customer data. This data is then used to extort companies into paying a ransom to prevent the data from being leaked. In a brief update to

Topics: actor attacks data google threat
Read More
Shop Amazon

ShinyHunters behind Salesforce data theft attacks at Qantas, Allianz Life, and LVMH

bleepingcomputer.com Unknown 2025-12-17 16:52:39

A wave of data breaches impacting companies like Qantas, Allianz Life, LVMH, and Adidas has been linked to the ShinyHunters extortion group, which has been using voice phishing attacks to steal data from Salesforce CRM instances. In June, Google's Threat Intelligence Group (GTIG) warned that threat actors tracked as UNC6040 were targeting Salesforce customers in social engineering attacks. In these attacks, the threat actors impersonated IT support staff in phone calls to targeted employees, a

Topics: attacks bleepingcomputer data salesforce threat
Read More
Shop Amazon

Scattered Spider is running a VMware ESXi hacking spree

bleepingcomputer.com Unknown 2025-12-24 09:05:50

Scattered Spider hackers have been aggressively targeting virtualized environments by attacking VMware ESXi hypervisors at U.S. companies in the retail, airline, transportation, and insurance sectors. According to the Google Threat Intelligence Group (GITG), the attackers keep employing their usual tactics that do not include vulnerability exploits but rely on perfectly executed social engineering "to bypass even mature security programs." A Scattered Spider attack The researchers say that th

Topics: access attack scattered spider threat
Read More
Shop Amazon

Report: Apple alerted Iranians to spyware attacks in lead-up to war with Israel

9to5mac.com Ryan Christoffel 2026-01-04 08:24:44

You may have never heard of them, but Apple sends “threat notifications” to users when it believes they’re being targeted by cyber attacks. Earlier this year that happened with several Iranians in the lead-up to the Iran-Israel war, per a new Bloomberg report. Here are the details. Apple threat notifications were sent to over a dozen Iranian cyberattack victims Patrick Howell O’Neill writes at Bloomberg: More than a dozen Iranians’ mobile phones were targeted with spyware in the months prior

Topics: apple attacks notifications threat users
Read More
Shop Amazon

Dell confirms breach of test lab platform by World Leaks extortion group

bleepingcomputer.com Unknown 2026-01-07 23:00:00

A newly rebranded extortion gang known as "World Leaks" breached one of Dell's product demonstration platforms earlier this month and is now trying to extort the company into paying a ransom. Dell acknowledged the incident to BleepingComputer, confirming that the threat actor had breached its Customer Solution Centers platform, which is used to demonstrate Dell products and solutions to customers. "A threat actor recently gained access to our Solution Center, an environment designed to demonst

Topics: data dell leaks threat world
Read More
Shop Amazon

SonicWall SMA devices hacked with OVERSTEP rootkit tied to ransomware

bleepingcomputer.com Unknown 2026-01-14 22:33:15

A threat actor has been deploying a previously unseen malware called OVERSTEP that modifies the boot process of fully-patched but no longer supported SonicWall Secure Mobile Access appliances. The backdoor is a user-mode rootkit that allows hackers to hide malicious components, maintain persistent access on the device, and steal sensitive credentials. Researchers at Google Threat Intelligence Group (GTIG) observed the rootkit in attacks that may have relied on “an unknown, zero-day remote code

Topics: access hackers rootkit threat unc6148
Read More
Shop Amazon

Four arrested in UK over M&S, Co-op, Harrods cyberattacks

bleepingcomputer.com Unknown 2026-01-22 21:46:02

The UK's National Crime Agency (NCA) arrested four people suspected of being involved in cyberattacks on major retailers in the country, including Marks & Spencer, Co-op, and Harrods. The arrested individuals are two 19-year-old males, one 17-year-old male, and a 20-year-old female, who were apprehended earlier today in their homes in London and the West Midlands. One of them is Latvian, and the rest are English. The police also confiscated electronic devices to examine them for potential incr

Topics: actors nca op scattered threat
Read More
Shop Amazon

Mycopunk Review: It's Deep Rock Galactic With a Fungal Infection

cnet.com See Full Bio 2026-01-25 06:00:00

There's a complex science to differentiating between first-person shooter games. The movement shooter is the antithesis of the military simulation, and you can't be any farther away from a boomer shooter than a battle royale. A slurry of subgenre archetypes, tags and "gameplay feels" serve as the building blocks for FPS taxonomy, creating a tried-and-true system to organize new games. That's why it's all the more thrilling when a new experience resists being cleanly categorized. Yes, developer

Topics: enemies game mycopunk play threat
Read More
Shop Amazon

Four arrested in UK over M&S, Co-op, Harrod cyberattacks

bleepingcomputer.com Unknown 2026-01-26 03:46:02

The UK's National Crime Agency (NCA) arrested four people suspected of being involved in cyberattacks on major retailers in the country, including Marks & Spencer, Co-op, and Harrods. The arrested individuals are two 19-year-old males, one 17-year-old male, and a 20-year-old female, who were apprehended earlier today in their homes in London and the West Midlands. One of them is Latvian, and the rest are English. The police also confiscated electronic devices to examine them for potential incr

Topics: actors nca op scattered threat
Read More
Shop Amazon
Trending Topics
Hot Now
ai 3650 apple 3016 new 2403 google 2028 content 1730
Popular
like 1498 company 1425 pro 1322 iphone 1161 app 1129 zdnet 1112 said 1067 data 1051 does 908 reviews 893
Emerging
editorial 872 amazon 857 game 808 samsung 777 phone 764 pixel 761 android 743 just 717 users 686 available 683
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]