Danish jewellery big Pandora has disclosed a knowledge breach after its buyer info was stolen within the ongoing Salesforce information theft assaults.
Pandora is likely one of the largest jewelry manufacturers on the planet, with 2,700 areas and over 37,000 staff.
“We’re writing to tell you that your contact info was accessed by an unauthorized social gathering via a third-party platform we use,” reads a Pandora information breach notification despatched to clients.
“We stopped the entry and have additional strengthened our safety measures.”
As first reported by Forbes, solely clients’ names, birthdates, and e-mail addresses had been stolen within the assault. Passwords, IDs, and monetary info weren’t uncovered.
Supply: Reddit
Whereas Pandora has not shared the identify of the third-party platform, BleepingComputer has discovered that the information was stolen from the corporate’s Salesforce database.
Since at the very least January 2025, if not earlier, menace actors have been conducting social engineering and phishing campaigns focusing on corporations’ staff and assist desks.
These assaults are designed to steal Salesforce credentials or trick staff into authorizing a malicious OAuth software to their Salesforce account.
Utilizing this entry, the menace actors obtain and steal the corporate’s Salesforce database, which is then used to extort the corporate into paying a ransom to forestall the information from being leaked.
ShinyHunters confirmed to BleepingComputer that they’re privately extorting corporations and can carry out a mass sale or leak of corporations that don’t pay a ransom sooner or later, like they did within the Snowflake data-theft assaults.
The menace actor additionally confirmed that the assaults are ongoing, so all corporations ought to assessment Salesforce’s suggestions on hardening their accounts.
“Salesforce has not been compromised, and the problems described are usually not as a consequence of any recognized vulnerability in our platform. Whereas Salesforce builds enterprise-grade safety into all the pieces we do, clients additionally play a important position in holding their information secure — particularly amid an increase in subtle phishing and social engineering assaults,” Salesforce informed BleepingComputer.
“We proceed to encourage all clients to comply with safety finest practices, together with enabling multi-factor authentication (MFA), imposing the precept of least privilege, and punctiliously managing related functions. For extra info, please go to: https://www.salesforce.com/weblog/protect-against-social-engineering/.”
Different corporations impacted in these assaults embody Adidas, Qantas, Allianz Life, and the LVMH subsidiaries Louis Vuitton, Dior, and Tiffany & Co.
Nevertheless, BleepingComputer has been informed that there are numerous extra that stay undisclosed.
Malware focusing on password shops surged 3X as attackers executed stealthy Excellent Heist situations, infiltrating and exploiting important programs.
Uncover the highest 10 MITRE ATT&CK strategies behind 93% of assaults and learn how to defend in opposition to them.