Loading
Yanuki
ARTICLE DETAIL
Workday Data Breach Linked to Salesforce Attack Exposes Customer Contact Information | JetBlue Requests Ground Stop at All Destinations Nationwide | Powerball Jackpot Won in Arkansas | Nick Shirley to Speak at CPAC 2026, Discusses Voter Fraud Allegations | Bishopville Man Wins $2 Million Lottery | Teacher Dies in High School Prank Gone Wrong; Wife Asks for Charges to Be Dropped | Luxury Real Estate Brokers Convicted in Sex Trafficking Trial | Military Draft Concerns Rise Amidst Iran Conflict | Trump Press Conference: U.S.-Israel-Led Iran War Enters Second Week | Workday Data Breach Linked to Salesforce Attack Exposes Customer Contact Information | JetBlue Requests Ground Stop at All Destinations Nationwide | Powerball Jackpot Won in Arkansas | Nick Shirley to Speak at CPAC 2026, Discusses Voter Fraud Allegations | Bishopville Man Wins $2 Million Lottery | Teacher Dies in High School Prank Gone Wrong; Wife Asks for Charges to Be Dropped | Luxury Real Estate Brokers Convicted in Sex Trafficking Trial | Military Draft Concerns Rise Amidst Iran Conflict | Trump Press Conference: U.S.-Israel-Led Iran War Enters Second Week

News / Security

Workday Data Breach Linked to Salesforce Attack Exposes Customer Contact Information

Human resources giant Workday has disclosed a data breach affecting a third-party customer relationship management (CRM) platform. Attackers accessed business contact information, potentially for use in social engineering scams. This incide...

HR giant Workday discloses data breach after Salesforce attack
Share
X LinkedIn

workday data breach
Workday Data Breach Linked to Salesforce Attack Exposes Customer Contact Information Image via BleepingComputer

Key Insights

  • Workday experienced a data breach via a third-party CRM platform.
  • Attackers accessed business contact information like names, email addresses, and phone numbers.
  • The breach is linked to the ShinyHunters extortion group, known for targeting Salesforce CRM instances.
  • Multiple other companies, including Adidas, Qantas, and Google, have been affected in similar attacks.
  • Workday says no customer tenant data was accessed.

In-Depth Analysis

Workday, a major HR technology provider, disclosed that it was targeted in a social engineering campaign that compromised a third-party CRM platform. The attackers gained access to commonly available business contact information, such as names, email addresses, and phone numbers. Workday has stated that there is no indication that customer tenant data was accessed.

This incident is believed to be part of a broader campaign by the ShinyHunters extortion group, which is known for targeting Salesforce CRM instances through social engineering and voice phishing attacks. The attackers trick employees into linking malicious OAuth apps to their company's Salesforce instances, allowing them to download and steal databases. Other high-profile companies, including Adidas, Qantas, Allianz Life, Louis Vuitton, Dior, Tiffany & Co., Chanel, and Google, have also been affected.

**How to Prepare:**

  • **Employee Training:** Conduct regular training to educate employees about social engineering tactics and how to identify phishing attempts.
  • **Multi-Factor Authentication (MFA):** Enforce MFA on all critical systems and accounts to prevent unauthorized access.
  • **Third-Party Risk Management:** Assess the security practices of third-party vendors and ensure they have adequate security measures in place.
  • **Incident Response Plan:** Develop and test an incident response plan to quickly and effectively respond to security incidents.

**Who This Affects Most:**

  • **Workday Customers:** Customers whose contact information was exposed may be at increased risk of phishing attacks.
  • **Employees:** Employees of affected organizations may be targeted with social engineering scams.
  • **Organizations Using Salesforce:** Companies using Salesforce CRM should review their security configurations and employee training programs.

Read source article

FAQ

What information was compromised in the Workday data breach?

Commonly available business contact information, such as names, email addresses, and phone numbers.

Was customer tenant data accessed?

Workday says there is no indication of access to customer tenants or the data within them.

Who is responsible for the attack?

The attack is believed to be linked to the ShinyHunters extortion group.

Takeaways

  • Workday suffered a data breach affecting a third-party CRM platform.
  • Business contact information was exposed and may be used for social engineering scams.
  • The breach is linked to a broader campaign targeting Salesforce CRM instances.
  • Organizations should implement security measures to protect against social engineering attacks and third-party risks.

Discussion

Do you think this trend of attacks targeting CRM platforms will continue? Let us know!

Share this article with others who need to stay ahead of this trend!

Sources

HR giant Workday discloses data breach after Salesforce attack HR giant Workday says hackers stole personal data in recent breach Workday Reveals CRM Breach

Disclaimer

This article was compiled by Yanuki using publicly available data and trending information. The content may summarize or reference third-party sources that have not been independently verified. While we aim to provide timely and accurate insights, the information presented may be incomplete or outdated.

All content is provided for general informational purposes only and does not constitute financial, legal, or professional advice. Yanuki makes no representations or warranties regarding the reliability or completeness of the information.

This article may include links to external sources for further context. These links are provided for convenience only and do not imply endorsement.

Always do your own research (DYOR) before making any decisions based on the information presented.

Related Stories

News / Airlines

JetBlue Requests Ground Stop at All Destinations Nationwide

The U.S. Federal Aviation Administration (FAA) has issued a ground stop for all JetBlue flights nationwide on March 10, 2026. This measure, requested by JetBlue, temporarily halts flights due to potential safety, weather, or operational con...

FAA says JetBlue requested ground stop at all destinations

News / Lottery

Powerball Jackpot Won in Arkansas

A lucky winner in Arkansas has claimed a $251 million Powerball jackpot. The winning ticket matched all numbers in the March 2 drawing. Meanwhile, the Powerball jackpot has reset, and drawings continue three times a week.

Powerball jackpot winner snags $251M. See where the ticket was sold.

News / Politics

Nick Shirley to Speak at CPAC 2026, Discusses Voter Fraud Allegations

Independent journalist and conservative influencer Nick Shirley is slated to speak at CPAC USA 2026 in Grapevine, Texas. Known for his investigative work, particularly on the Minnesota Child Care Center Fraud, Shirley also recently discusse...

Nick Shirley to Join CPAC USA 2026

News / Lottery

Bishopville Man Wins $2 Million Lottery

A Bishopville, South Carolina man is celebrating a life-changing $2 million lottery win after a spontaneous scratch-off purchase. The lucky winner bought the ticket at B & R Market in Bishopville.

Lottery ticket SC man wanted was sold out, but 2nd choice was grand prize winner

News / Crime

Teacher Dies in High School Prank Gone Wrong; Wife Asks for Charges to Be Dropped

A North Hall High School teacher in Gainesville, Georgia, died after a senior prank went tragically wrong. The teacher’s wife is now requesting that charges against the involved students be dropped, emphasizing the need to prevent further t...

Georgia Teacher Is Killed After Teenagers’ Prank Goes Wrong

News / Crime

Luxury Real Estate Brokers Convicted in Sex Trafficking Trial

Two high-profile luxury real estate brokers and their brother, Oren, Tal, and Alon Alexander, have been convicted in a federal sex trafficking trial. The brothers were accused of using their wealth and influence to sexually abuse women, lea...

Verdict reached in federal sex-trafficking trial of luxury real estate brokers and their brother

News / Politics

Military Draft Concerns Rise Amidst Iran Conflict

Concerns are growing about a potential military draft in the United States as the conflict with Iran continues. Comments from the Trump administration have fueled speculation and sparked debate among politicians and the public.

Marjorie Taylor Greene Accuses Leavitt Of Leaving Door Open For A Draft, But There's Just 1 Problem

News / Politics

Trump Press Conference: U.S.-Israel-Led Iran War Enters Second Week

President Trump held a press conference addressing the ongoing U.S.-Israel-led military action in Iran, which has entered its second week. The conference occurred against a backdrop of soaring oil and gas prices, sparking concerns about the...

Trump to hold a press conference after markets close on Monday