Google warned of social engineering campaign targeting salesforce users: What has happened here. Mint

According to a new report by Google’s Threat Intelligence Team, a hacking group as a support personnel has infiltrated the salesforce systems of at least 20 companies in the United States and Europe.

Cyber ​​criminal is believed to have a lax connected collective, known as “com”, exploited human error rather than software weaknesses, rely on social engineering techniques to gain access to sensitive corporate data. The group, which allegedly belongs to hackers located in the US, UK and Western Europe, used phone calls to implement IT employees, hurting employees to hand over login credentials or add wicked applications to their companies’ salesforce platforms.

Once inside, the attackers abolished the data, sometimes waiting for months before contacting the victims with the demand for forced recovery. According to Google’s findings, the campaign did not exploit any technical flaws within the salesforce.

A salesforce spokesperson confirmed via email, “There is no indication that the issue arising out of any vulnerability inherent to our services is described.” “Attacks like Voice Fishing are targeted by social engineering scams designed to take advantage of intervals in cyber security awareness and best practices of individual users.

Salesforce issued a warning in the first March, highlighting the increasing use of social engineering strategy with the aim of compromising the customer accounts. This offered guidance to the organizations to help strengthen their rescue.

While many recent infiltrators have affected the retail, group activities expand into a wide range of industries. In particular, many major retailers-of marks and spensors, co-op, adidas, Victoria Secret, Cartier and North Face-have faced cyber attacks in recent weeks. However, Google said that there is not enough evidence to connect the com group directly to these specific events.

“When we have seen this group the target retail, they have also targeted other industries and we definitely do not have sufficient information to link this group more widely than recent hacks in the US and the UK,” said Austin Larsen, Principal of Google’s Threat Analysis Group, said, “When we have seen the target retail.

Google’s investigation has also revealed that criminals used the infrastructure and strategy already associated with the members of the com, which were considered part of the infamous scattered spider hacking collectors. The group has been linked to several high-profile violations in recent years and has been known to apply IT personnel as part of its modus operandi. Some members are believed to have been included in SIM-swapping schemes to steal cryptocurrency, which often coordinate through social media platforms.

In light of conclusions, Google has urged businesses to strengthen employee training and be vigilant for social engineering threat, which remains an important vector for cyber attack despite progress in technical security.

(With input from Bloomberg)