French fashion giant Chanel is the latest company to suffer a data breach in an ongoing wave of Salesforce data theft attacks.
Chanel says the breach was first detected on July 25th after threat actors gained access to a Chanel database hosted at a third-party service provider, as first reported by WWD.
The breach only impacted customers in the United States and exposed personal contact information.
"Based on the findings of the investigation, the data obtained by the unauthorized external party contained limited details of a subset of individuals who contacted our client care center in the U.S. —specifically name, email address, mailing address and phone number," a Spokesperson told WWD.
"No other information was contained in the database. The clients affected have been informed."
While Chanel has not replied to our emails and the name of the third-party service provider was not mentioned, BleepingComputer has learned that it was stolen from the company's Salesforce instance.
This attack has been attributed to the ongoing wave of Salesforce data-theft attacks conducted by the ShinyHunters extortion group.
As first reported by Mandiant, threat actors have been actively targeting Salesforce customers in vishing (voice phishing) attacks to compromise credentials or to trick employees into authorizing a malicious OAuth app with their organization's Salesforce portal.
Once they gain access to the Salesforce instance, they exfiltrate the database and use it as leverage in extortion demands on customers.
In a statement to BleepingComputer, Salesforce emphasized that its platform was not compromised, but rather, customers' accounts are being breached in social engineering attacks.
... continue reading