Google has confirmed that one of its Salesforce systems used for storing small and medium business contact data was briefly compromised by a cybercriminal group known as UNC6040, which uses voice phishing or “vishing”, to trick employees into handing over access to sensitive tools.

Hackers impersonated IT support staff

The attackers used a class=”backlink” target=”_blank” href=”https://cloud.google.com/blog/topics/threat-intelligence/voice-phishing-data-extortion?rev=7194ef805fa2d04b0f7e8c9521f97343″ data-vars-page-type=”story” data-vars-link-type=”Manual” data-vars-anchor-text=”social engineering technique”>social engineering technique where they impersonated IT support staff during phone calls, convincing employees to authorise malicious software connected to their Salesforce environment. This allowed the group to…

Google has confirmed that one of its Salesforce systems used for storing small and medium business contact data was briefly compromised by a cybercriminal group known as UNC6040, which uses voice phishing or “vishing”, to trick employees into handing over access to sensitive tools.

Hackers impersonated IT support staff

The attackers used a class=”backlink” target=”_blank” href=”https://cloud.google.com/blog/topics/threat-intelligence/voice-phishing-data-extortion?rev=7194ef805fa2d04b0f7e8c9521f97343″ data-vars-page-type=”story” data-vars-link-type=”Manual” data-vars-anchor-text=”social engineering technique”>social engineering technique where they impersonated IT support staff during phone calls, convincing employees to authorise malicious software connected to their Salesforce environment. This allowed the group to…