Massive Salesforce Data Breach

ShinyHunters Strikes Again: Massive Salesforce Data Breach Exposes 1.5 Billion Records

Ravi Jain
A major cybersecurity incident where the ShinyHunters group, now potentially rebranded as “Scattered Lapsus Hunters,” exploited third-party vulnerabilities in Salesloft to gain unauthorized access to 1.5 billion Salesforce records from 760 companies. This extensive breach involved the theft of various types of sensitive data, including account, contact, opportunity, user, and case records, with the attackers utilizing stolen OAuth tokens. The document further explains how this incident highlights the evolving sophistication of cyber threats and the critical need for organizations to secure their integrated applications and third-party connections, with Google and the FBI actively tracking the threat actors. Finally, the text introduces “Technijian” as a managed IT services provider offering cybersecurity solutions and expertise in protecting against such complex attacks, particularly focusing on third-party integration assessments and continuous monitoring. ... Read More
Hackers steal millions of personal records

Hackers Steal Millions of Personal Records from Gucci, Balenciaga and Alexander McQueen in Major Data Breach

Ravi Jain
A significant data breach impacting luxury brands like Gucci, Balenciaga, and Alexander McQueen, all owned by French conglomerate Kering. This breach, attributed to the Shiny Hunters cybercriminal group, exposed personally identifiable information and spending histories of millions of customers, though not payment card details. The text details the sophisticated attack methods used, Kering’s compliance with GDPR regulations, and the elevated risks for affected customers, particularly high-spenders. Additionally, the sources highlight Technician and Technijian, two companies offering cybersecurity and IT services, emphasizing their capabilities in protecting individuals and businesses from similar cyber threats and managing overall IT infrastructure. ... Read More
Google Law Enforcement Portal Breach

Google Confirms Security Breach in Law Enforcement Request Portal

Ravi Jain
A significant security breach within Google’s Law Enforcement Request System (LERS), which was orchestrated by a cybercriminal group known as “Scattered Lapsus$ Hunters.” This group, comprising members from several notorious hacking collectives, successfully created an unauthorized account within the sensitive LERS platform, although Google confirms no actual data requests were processed or sensitive information compromised through this fraudulent access. The document further details the group’s previous attack patterns, primarily exploiting Salesforce platforms through social engineering and authentication token abuse, and the broader implications for the security of law enforcement data systems across the tech industry. Finally, the text introduces Technijian, an IT services provider, offering various cybersecurity solutions and consulting to help organizations protect against such sophisticated threats and enhance their overall security posture. ... Read More
VoidProxy

VoidProxy: The Emerging Threat Targeting Microsoft 365 and Google Workspace Users

Ravi Jain
VoidProxy, a sophisticated “phishing-as-a-service” platform that targets Microsoft 365 and Google Workspace users. This threat distinguishes itself by operating as a real-time proxy, enabling attackers to intercept not only usernames and passwords, but also multi-factor authentication tokens and active session cookies. The platform utilizes compromised email marketing accounts, sophisticated redirection chains, and Cloudflare infrastructure to bypass traditional security measures and present convincing phishing pages. Technijian, an IT services provider, is introduced as a resource for organizations to implement robust cybersecurity defenses against such advanced threats, offering solutions like phishing-resistant authentication, risk-based access controls, and incident response. ... Read More
Senator Demands FTC Investigation

Microsoft Under Fire: Senator Demands FTC Investigation Over Security Failures

Ravi Jain
A U.S. senator’s formal request for an FTC investigation into Microsoft’s cybersecurity practices, citing “gross cybersecurity negligence.” This negligence is linked to ransomware attacks on critical infrastructure, specifically mentioning the Ascension Health breach where 5.6 million patient records were compromised due to the exploitation of weak RC4 encryption in Microsoft’s Kerberos authentication system. The documents highlight Microsoft’s continued use of the outdated RC4 algorithm despite its known vulnerabilities, with the company defending its presence for backward compatibility while stating its intent to gradually phase it out. Finally, the sources also feature a cybersecurity firm, Technijian, offering services to mitigate such vulnerabilities and strengthen organizational security, emphasizing proactive measures and expert guidance to protect against advanced threats like Kerberoasting. ... Read More