An English-speaking hacking group — operating under names like Lapsus$, Scattered Spider, and ShinyHunters – has launched a dedicated data leak website on the dark web to extort its victims, a report has said, adding that the group, now calling the site Scattered LAPSUS$ Hunters, is threatening to release approximately one billion records stolen from companies using cloud databases hosted by Salesforce .
According to a report by TechCrunch, the website, spotted by threat intelligence researchers on Friday (October 3), is designed to pressure victims into paying a ransom to prevent the publication of their stolen data.
“Contact us to regain control on data governance and prevent public disclosure of your data. Do not be the next headline,” the hackers ' site reportedly reads.
Various tech companies confirm data theft
Over the last few weeks, the ShinyHunters gang allegedly breached dozens of high-profile companies by targeting their cloud-based databases hosted by Salesforce. Several major corporations have confirmed their data was compromised in these mass hacks, including Insurance giant Allianz Life, Google , Airline Qantas , and Carmaking giant Stellantis, among others.
The leak site also lists several additional alleged victims, such as FedEx, Hulu (owned by Disney), and Toyota Motors.
Salesforce targeted directly, company says no indication of data theft
The hackers have also directly targeted Salesforce on the site, demanding that the company negotiate a ransom and threatening that otherwise “all your customers [sic] data will be leaked.”
In a statement provided by spokesperson Nicole Aranda, Salesforce confirmed it is "aware of recent extortion attempts by threat actors," but maintained confidence in its platform's security.
“Our findings indicate these attempts relate to past or unsubstantiated incidents, and we remain engaged with affected customers to provide support. At this time, there is no indication that the Salesforce platform has been compromised, nor is this activity related to any known vulnerability in our technology," the statement read.
According to a report by TechCrunch, the website, spotted by threat intelligence researchers on Friday (October 3), is designed to pressure victims into paying a ransom to prevent the publication of their stolen data.
“Contact us to regain control on data governance and prevent public disclosure of your data. Do not be the next headline,” the hackers ' site reportedly reads.
Various tech companies confirm data theft
Over the last few weeks, the ShinyHunters gang allegedly breached dozens of high-profile companies by targeting their cloud-based databases hosted by Salesforce. Several major corporations have confirmed their data was compromised in these mass hacks, including Insurance giant Allianz Life, Google , Airline Qantas , and Carmaking giant Stellantis, among others.
The leak site also lists several additional alleged victims, such as FedEx, Hulu (owned by Disney), and Toyota Motors.
Salesforce targeted directly, company says no indication of data theft
The hackers have also directly targeted Salesforce on the site, demanding that the company negotiate a ransom and threatening that otherwise “all your customers [sic] data will be leaked.”
In a statement provided by spokesperson Nicole Aranda, Salesforce confirmed it is "aware of recent extortion attempts by threat actors," but maintained confidence in its platform's security.
“Our findings indicate these attempts relate to past or unsubstantiated incidents, and we remain engaged with affected customers to provide support. At this time, there is no indication that the Salesforce platform has been compromised, nor is this activity related to any known vulnerability in our technology," the statement read.
You may also like
Scientist says 'answers may be hiding in plain sight' in predicting dementia risk
Simple 'sock and cat litter' trick to keep your car windows fog-free
National Medical Commission still to act on junketeering doctors
Khalistan radicals try to set fire to Ontario cinema twice in a week
'True friend' of Israel Tommy Robinson invited to country after Manchester attack
