Cybercriminals launch a social engineering assault against Workday platform
In a concerning turn of events, cybersecurity firm Reliaquest has uncovered potential collaboration between the hacker groups ShinyHunters and Scattered Spider. This collaboration is believed to have resulted in a breach at one of Workday's third-party vendors.
The breach has given hackers access to support tickets containing Workday customers' names, email addresses, and phone numbers. Workday, an AI-based platform for managing human resources and payments, has over 60% of the Fortune 500 companies and more than 11,000 organisations worldwide as its users.
Workday has swiftly taken action, informing its customers and partners about the incident with its vendor and implementing additional security measures. The company has also clarified that there is no evidence that the hackers accessed data stored on Workday's own servers.
Scattered Spider, known for targeting companies across multiple industries over the past several months, is believed to be associated with ShinyHunters, which is associated with the underground cybercrime collective The Com. ShinyHunters has been actively launching attacks on Salesforce instances in recent months.
The social engineering attack on Workday occurred through a CRM platform of a third-party provider, likely Salesforce. The attackers used social engineering tactics to gain access, but the specific individuals or groups behind this operation have not been publicly identified. Workday has confirmed that only business contact information was exposed, not customer data.
It's worth noting that Workday does not contact anyone by phone to request passwords or other personal information. The company urges its users to remain vigilant and to report any suspicious activities to their security teams.
One of the targeted Salesforce instances was owned by Google earlier this month. This incident underscores the importance of robust security measures for all organisations, regardless of their size or industry.
Workday has reiterated that all signs indicate that Workday customer data remains secure. The company continues to monitor the situation closely and is working diligently to ensure the continued protection of its users' data.
Read also:
- Understanding Hemorrhagic Gastroenteritis: Key Facts
- Stopping Osteoporosis Treatment: Timeline Considerations
- Trump's Policies: Tariffs, AI, Surveillance, and Possible Martial Law
- Expanded Community Health Involvement by CK Birla Hospitals, Jaipur, Maintained Through Consistent Outreach Programs Across Rajasthan
