Danish jewellery big Pandora has disclosed a knowledge breach after its buyer data was stolen within the ongoing Salesforce information theft assaults.
Pandora is likely one of the largest jewelry manufacturers on the planet, with 2,700 areas and over 37,000 staff.
“We’re writing to tell you that your contact data was accessed by an unauthorized social gathering by way of a third-party platform we use,” reads a Pandora information breach notification despatched to prospects.
“We stopped the entry and have additional strengthened our safety measures.”
As first reported by Forbes, solely prospects’ names, birthdates, and e-mail addresses have been stolen within the assault. Passwords, IDs, and monetary data weren’t uncovered.
Supply: Reddit
Whereas Pandora has not shared the title of the third-party platform, BleepingComputer has realized that the information was stolen from the corporate’s Salesforce database.
Since not less than January 2025, if not earlier, risk actors have been conducting social engineering and phishing campaigns focusing on firms’ staff and assist desks.
These assaults are designed to steal Salesforce credentials or trick staff into authorizing a malicious OAuth utility to their Salesforce account.
Utilizing this entry, the risk actors obtain and steal the corporate’s Salesforce database, which is then used to extort the corporate into paying a ransom to forestall the information from being leaked.
ShinyHunters confirmed to BleepingComputer that they’re privately extorting firms and can carry out a mass sale or leak of firms that don’t pay a ransom sooner or later, like they did within the Snowflake data-theft assaults.
The risk actor additionally confirmed that the assaults are ongoing, so all firms ought to evaluation Salesforce’s suggestions on hardening their accounts.
“Salesforce has not been compromised, and the problems described should not as a result of any identified vulnerability in our platform. Whereas Salesforce builds enterprise-grade safety into every little thing we do, prospects additionally play a crucial function in protecting their information secure — particularly amid an increase in subtle phishing and social engineering assaults,” Salesforce informed BleepingComputer.
“We proceed to encourage all prospects to observe safety finest practices, together with enabling multi-factor authentication (MFA), imposing the precept of least privilege, and punctiliously managing related functions. For extra data, please go to:Â https://www.salesforce.com/weblog/protect-against-social-engineering/.”
Different firms impacted in these assaults embrace Adidas, Qantas, Allianz Life, and the LVMH subsidiaries Louis Vuitton, Dior, and Tiffany & Co.
Nonetheless, BleepingComputer has been informed that there are various extra that stay undisclosed.
Malware focusing on password shops surged 3X as attackers executed stealthy Excellent Heist eventualities, infiltrating and exploiting crucial programs.
Uncover the highest 10 MITRE ATT&CK strategies behind 93% of assaults and easy methods to defend in opposition to them.
