Danish jewellery big Pandora has disclosed a knowledge breach after its buyer info was stolen within the ongoing Salesforce knowledge theft assaults.
Pandora is likely one of the largest jewelry manufacturers on the earth, with 2,700 areas and over 37,000 staff.
“We’re writing to tell you that your contact info was accessed by an unauthorized occasion by means of a third-party platform we use,” reads a Pandora knowledge breach notification despatched to prospects.
“We stopped the entry and have additional strengthened our safety measures.”
As first reported by Forbes, solely prospects’ names, birthdates, and electronic mail addresses had been stolen within the assault. Passwords, IDs, and monetary info weren’t uncovered.
Supply: Reddit
Whereas Pandora has not shared the title of the third-party platform, BleepingComputer has discovered that the information was stolen from the corporate’s Salesforce database.
Since at the very least January 2025, if not earlier, risk actors have been conducting social engineering and phishing campaigns concentrating on firms’ staff and assist desks.
These assaults are designed to steal Salesforce credentials or trick staff into authorizing a malicious OAuth software to their Salesforce account.
Utilizing this entry, the risk actors obtain and steal the corporate’s Salesforce database, which is then used to extort the corporate into paying a ransom to forestall the information from being leaked.
ShinyHunters confirmed to BleepingComputer that they’re privately extorting firms and can carry out a mass sale or leak of firms that don’t pay a ransom sooner or later, like they did within the Snowflake data-theft assaults.
The risk actor additionally confirmed that the assaults are ongoing, so all firms ought to overview Salesforce’s suggestions on hardening their accounts.
“Salesforce has not been compromised, and the problems described are usually not attributable to any identified vulnerability in our platform. Whereas Salesforce builds enterprise-grade safety into every little thing we do, prospects additionally play a crucial function in holding their knowledge secure — particularly amid an increase in subtle phishing and social engineering assaults,” Salesforce instructed BleepingComputer.
“We proceed to encourage all prospects to observe safety finest practices, together with enabling multi-factor authentication (MFA), implementing the precept of least privilege, and thoroughly managing related purposes. For extra info, please go to:Â https://www.salesforce.com/weblog/protect-against-social-engineering/.”
Different firms impacted in these assaults embrace Adidas, Qantas, Allianz Life, and the LVMH subsidiaries Louis Vuitton, Dior, and Tiffany & Co.
Nevertheless, BleepingComputer has been instructed that there are lots of extra that stay undisclosed.
Malware concentrating on password shops surged 3X as attackers executed stealthy Good Heist eventualities, infiltrating and exploiting crucial methods.
Uncover the highest 10 MITRE ATT&CK methods behind 93% of assaults and the right way to defend in opposition to them.
