banner1
Logo Blinking Image
banner2

HOME
Breaking News

Hackers claim major data breach targeting Salesforce users via UK retailers

by VARINDIA 2025-10-04
Hackers claim major data breach targeting Salesforce users via UK retailers

Salesforce denied any breach of its platform, but the hacker group claims it exploited users through voice phishing and tricked support staff into installing a tampered tool that allowed large-scale data extraction from client systems

 

 

A cybercriminal group calling itself Scattered LAPSUS$ Hunters has claimed responsibility for stealing nearly one billion records by targeting companies that use Salesforce software. The group, reportedly connected to the broader LAPSUS$ cybercrime network, says it accessed vast amounts of personal data through social engineering tactics rather than a direct breach of Salesforce’s systems.

Salesforce, a leading U.S. cloud services provider, has denied any compromise of its platform. A spokesperson stated there is “no indication” of a breach in their technology or any known vulnerabilities being exploited. However, the group claims it exploited Salesforce users through techniques like vishing—a form of voice phishing—and tricked customer support staff into installing malicious tools, including a tampered version of Salesforce’s Data Loader, which enabled bulk data extraction.

Major retailers and the dark web leak

The group also claims responsibility for earlier cyberattacks on British retailers including Marks & Spencer, Co-op, and Jaguar Land Rover, and has posted a leak site on the dark web listing over 40 organisations it claims to have breached. It remains unclear whether all of these entities are actual Salesforce customers, and the authenticity of the stolen “billion-record” cache has not been independently verified.

Links to larger cybercrime ecosystems

Security analysts say the group is tracked by Google’s Threat Intelligence team under the designation UNC6040, and note that its infrastructure may overlap with “The Com,” a loosely organised cybercriminal network involved in both digital and physical criminal activity. The tactics of Scattered LAPSUS$ Hunters mirror those of earlier LAPSUS$ operations, which often relied on manipulating employees rather than exploiting technical flaws.

Ongoing investigations

In July, British authorities arrested four individuals under the age of 21 in connection with earlier retail cyberattacks. It remains unclear whether those arrests are directly linked to the latest data theft claims. Investigations by law enforcement and cybersecurity experts are ongoing.

 
er

See What’s Next in Tech With the Fast Forward Newsletter

SECURITY
View All
C-Suite's rush to AI blinds leadership to critical security failures, leaving organisations exposed

C-Suite's rush to AI blinds leadership to critical security failures, leaving organisations exposed

Kaspersky introduces Notification Protection for Android app

Kaspersky introduces Notification Protection for Android app

CBI Operation Chakra-V Busts Nationwide Crypto Fraud Ring

CBI Operation Chakra-V Busts Nationwide Crypto Fraud Ring

SOFTWARE
View All
Bud and NxtGen launch ‘M for Coding’, India’s alternative to Claude Code

Bud and NxtGen launch ‘M for Coding’, India’s alternative to Claude Code

Neo4j invests $100M in product innovation, unveils Aura Agent and MCP Server

Neo4j invests $100M in product innovation, unveils Aura Agent and MCP Server

AI skills surge in India as enterprises prioritize human-centric workforce transformation: Udemy report

AI skills surge in India as enterprises prioritize human-centric workforce transformation: Udemy report

START - UP
View All
Ex-Twitter CEO Parag Agrawal Unveils AI-Focused Startup Parallel Web Systems

Ex-Twitter CEO Parag Agrawal Unveils AI-Focused Startup Parallel Web Systems

Travel tech startup Teleport acquired by StampMyVisa

Travel tech startup Teleport acquired by StampMyVisa

Tally Solutions launches ‘Startup Challenge’ to boost innovation in manufacturing tech

Tally Solutions launches ‘Startup Challenge’ to boost innovation in manufacturing tech

Tweets From @varindiamag

CIO - SPEAK
Automation has the potential to greatly improve efficiency and production

Automation has the potential to greatly improve efficiency and production

Various approaches are followed to enhance efficiency, productivity, and cost-effectiveness

Various approaches are followed to enhance efficiency, productivity, and cost-effectiveness

Technology can be leveraged in several ways to boost efficiency, productivity and reduce cost

Technology can be leveraged in several ways to boost efficiency, productivity and reduce cost

wew
wrdf
Start-Up and Unicorn Ecosystem
India's Technology Revolution: How Top 20 Companies Are Reshaping the Digital Landscape

India's Technology Revolution: How Top 20 Companies Are Reshaping the Digital Landscape

CLS 2026 : 40 Tech Segments Shaping the Channel

CLS 2026 : 40 Tech Segments Shaping the Channel

Channel Partners: Turbocharging India’s Tech Boom

Channel Partners: Turbocharging India’s Tech Boom

Payments 2030: What’s Shaping the Future?

Payments 2030: What’s Shaping the Future?

Pine Labs Partners with Bank of Ceylon to Power Multi-Currency Travel Card

Pine Labs Partners with Bank of Ceylon to Power Multi-Currency Travel Card

India Emerges as the Global Nerve Center for GCCs

India Emerges as the Global Nerve Center for GCCs

Indian Enterprises Can Unlock the $609 Billion AI Opportunity

Indian Enterprises Can Unlock the $609 Billion AI Opportunity

Consulting Firms Under Fire for AI Rollouts

Consulting Firms Under Fire for AI Rollouts

Deepfake Deception: How AI Fuels Scams and Fake News

Deepfake Deception: How AI Fuels Scams and Fake News

Databricks and OpenAI Partner to Bring Frontier AI to Enterprises with $100M Deal

Databricks and OpenAI Partner to Bring Frontier AI to Enterprises with $100M Deal

dsf