HR giant Workday discloses data breach after Salesforce attack

Source: BleepingComputer

Author: Sergiu Gatlan

URL: https://www.bleepingcomputer.com/news/security/hr-giant-workday-discloses-data-breach-amid-salesforce-attacks/

ONE SENTENCE SUMMARY:

Workday experienced a data breach after attackers accessed a third-party CRM platform via social engineering, exposing business contact information.

MAIN POINTS:

1. Workday faced a data breach through a third-party CRM attack.
2. The breach involved social engineering tactics targeting Workday and other large organizations.
3. No customer tenants or sensitive data were accessed.
4. Exposed information includes names, emails, and phone numbers.
5. The breach occurred around August 6.
6. Attackers impersonated HR or IT to trick employees.
7. ShinyHunters extortion group is linked to these types of attacks.
8. Multiple global companies, like Google and Adidas, were also targeted.
9. ShinyHunters use OAuth apps to access Salesforce databases.
10. Stolen data is used for extortion by the attackers.

TAKEAWAYS:

1. Vigilance against social engineering is crucial for large organizations.
2. Third-party platforms can be vulnerable points of entry.
3. Regular monitoring and quick identification of breaches are essential.
4. Employee training on phishing and impersonation threats is vital.
5. Engaging with cybersecurity reports can help anticipate future threats.