CyberSecurityBoard
Sponsor Register Login

FBI warns of UNC6040, UNC6395 hackers stealing Salesforce data

The FBI has issued a warning about two advanced hacking groups, UNC6040 and UNC6395, actively targeting Salesforce data. These threat actors are exploiting vulnerabilities and using sophisticated tactics to infiltrate organizations and steal sensitive customer and business information stored within Salesforce environments. The warning highlights the increasing risk to cloud-based CRM platforms and the need for enhanced security measures. Organizations using Salesforce are advised to implement strict access controls, monitor for unusual activity, and apply security patches promptly to mitigate the risk of data breaches. This alert underscores the evolving tactics of cybercriminals focusing on cloud infrastructure and the importance of proactive defense strategies to protect critical business data.

This Cyber News was published on www.bleepingcomputer.com. Publication date: Sun, 14 Sep 2025 22:00:12 +0000


Cyber News related to FBI warns of UNC6040, UNC6395 hackers stealing Salesforce data

FBI Warns of UNC6040 and UNC6395 Threat Groups Targeting US Organizations - The FBI has issued a critical warning about two emerging threat groups, UNC6040 and UNC6395, targeting US organizations with sophisticated cyberattacks. These groups have been linked to multiple intrusion campaigns involving advanced malware and ...
2 months ago Thehackernews.com CVE-2024-12345 CVE-2024-67890 UNC6040 UNC6395
FBI warns of UNC6040, UNC6395 hackers stealing Salesforce data - The FBI has issued a warning about two advanced hacking groups, UNC6040 and UNC6395, actively targeting Salesforce data. These threat actors are exploiting vulnerabilities and using sophisticated tactics to infiltrate organizations and steal ...
2 months ago Bleepingcomputer.com UNC6040 UNC6395
How to perform a proof of concept for automated discovery using Amazon Macie | AWS Security Blog - After reviewing the managed data identifiers provided by Macie and creating the custom data identifiers needed for your POC, it’s time to stage data sets that will help demonstrate the capabilities of these identifiers and better understand how ...
1 year ago Aws.amazon.com
ShinyHunters behind Salesforce data theft attacks at Qantas, Allianz Life, and LVMH - A wave of data breaches impacting companies like Qantas, Allianz Life, LVMH, and Adidas has been linked to the ShinyHunters extortion group, which has been using voice phishing attacks to steal data from Salesforce CRM instances. These breaches have ...
3 months ago Bleepingcomputer.com Hunters Scattered Spider
US Congress Report Calls for Privacy Reforms After FBI Surveillance 'Abuses' - The FBI and the Biden administration at large have lobbied Congress to reauthorize the 702 program as is, ignoring calls for reform that have grown louder since the beginning of the year, manifesting this month in the form of a comprehensive privacy ...
1 year ago Wired.com
Salesforce Lays-Off 700 Staff - American CRM giant Salesforce is reportedly reducing its workforce again, on top of a sizeable reduction back in 2023. The Wall Street Journal reported that Salesforce is laying off 700 workers, or 1 percent of its workforce, in the latest round of ...
1 year ago Silicon.co.uk
How the FBI seized BlackCat ransomware's servers - An unsealed FBI search warrant revealed how law enforcement hijacked the ALPHV/BlackCat ransomware operations websites and seized the associated URLs. Today, the US Department of Justice confirmed that they seized websites for the ALPHV ransomware ...
1 year ago Bleepingcomputer.com LockBit Noescape
Inside the strategy of Salesforce's new Chief Trust Officer - In this Help Net Security interview, Arkin discusses a collaborative approach to building trust among customers, employees, and stakeholders, focusing on transparency, shared responsibility, and empowering others to integrate trusted and responsible ...
1 year ago Helpnetsecurity.com
FBI: ALPHV ransomware raked in $300 million from over 1,000 victims - The ALPHV/BlackCat ransomware gang has made over $300 million in ransom payments from more than 1,000 victims worldwide as of September 2023, according to the Federal Bureau of Investigation. In the joint advisory published today in collaboration ...
1 year ago Bleepingcomputer.com LockBit Noescape
FBI disrupts Moobot botnet used by Russian military hackers - The FBI took down a botnet of small office/home office routers used by Russia's Main Intelligence Directorate of the General Staff in spearphishing and credential theft attacks targeting the United States and its allies. This network of hundreds of ...
1 year ago Bleepingcomputer.com Fancy Bear APT28 Turla Volt Typhoon
FBI warns of gift card fraud ring targeting retail companies - The FBI warned retail companies in the United States that a financially motivated hacking group has been targeting employees in their gift card departments in phishing attacks since at least January 2024. Tracked as Storm-0539, this hacking group ...
1 year ago Bleepingcomputer.com
FBI's latest defense of warrantless S. 702 snooping is China The Register - Analysis The FBI's latest PR salvo, as it fights to preserve its warrantless snooping powers on Americans via FISA Section 702, is more big talk of cyberattacks by the Chinese government. Wray cited an example he's used previously about how, last ...
1 year ago Go.theregister.com Volt Typhoon
Google Releases Guide Against UNC6040 - Google has published a comprehensive guide to help organizations defend against the threat group UNC6040. This group is known for its sophisticated cyber espionage campaigns targeting various sectors globally. The guide details the tactics, ...
1 month ago Cybersecuritynews.com UNC6040
FBI Warns of Threat Actors Targeting Salesforce Customers - The FBI has issued a warning about threat actors targeting Salesforce customers through sophisticated cyberattacks. These threat actors exploit vulnerabilities and use social engineering tactics to gain unauthorized access to Salesforce environments, ...
2 months ago Darkreading.com
BlackCat Ransomware Raises Ante After FBI Disruption - The U.S. Federal Bureau of Investigation disclosed today that it infiltrated the world's second most prolific ransomware gang, a Russia-based criminal group known as ALPHV and BlackCat. The FBI said it seized the gang's darknet website, and released ...
1 year ago Krebsonsecurity.com
FBI Director: FISA 702 warrant requirement 'de facto ban' The Register - FBI director Christopher Wray made yet another impassioned plea to US lawmakers to kill a proposed warrant requirement for so-called "US person queries" of data collected via the Feds' favorite snooping tool, FISA Section 702. This controversial ...
1 year ago Theregister.com
How the FBI Infiltrated the Hive Ransomware Gang Systems - The FBI has recently infiltrated the systems of the Hive ransomware gang, one of the most sophisticated and successful global cybercrime gangs. This infiltration is a major victory for the FBI in its fight against ransomware, cybercrime, and other ...
2 years ago Bleepingcomputer.com
Salesforce Attacks: Latest Threats and Security Measures - Salesforce, a leading customer relationship management platform, has increasingly become a target for cyber attackers. This article delves into the latest Salesforce attacks, highlighting the methods threat actors use to exploit vulnerabilities and ...
2 months ago Cybersecuritynews.com CVE-2023-34362 CVE-2023-34363 UNC2452
Salesforce Releases Forensic Investigation Guide - Salesforce has published a comprehensive Forensic Investigation Guide aimed at helping organizations effectively investigate security incidents within their Salesforce environments. This guide provides detailed methodologies, best practices, and ...
2 months ago Cybersecuritynews.com
FBI seeks help to unmask Salt Typhoon hackers behind telecom breaches - In January, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced sanctions against Sichuan Juxinhe Network Technology, a Chinese cybersecurity firm believed to be directly involved in the Salt Typhoon telecom ...
7 months ago Bleepingcomputer.com
Allianz Life confirms data breach impacts majority of 1.4 million customers - ShinyHunters is a group of threat actors who are linked to multiple high-profile data breaches and attacks, including those against PowerSchool and the SnowFlake attacks, which ...
4 months ago Bleepingcomputer.com Hunters
FBI warns on Scattered Spider hackers, urges victims to come forward - Caesars Entertainment Inc MGM Resorts International Microsoft Corp SAN FRANCISCO, Nov 16 - The FBI warned organizations to guard against the Scattered Spider hacking group, which has breached dozens of American organizations over the past year, ...
1 year ago Reuters.com Scattered Spider
FBI warns Scattered Spider targeting Salesforce customers with BazarLoader malware - The FBI has issued a warning about the Scattered Spider threat group targeting Salesforce customers using BazarLoader malware. This campaign involves sophisticated phishing attacks aimed at compromising Salesforce accounts to gain access to sensitive ...
2 months ago Therecord.media Scattered Spider

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)