A group of cybercriminals, tracked by Google's Threat Intelligence Group as UNC6040, has duped employees from around 20 organizations into downloading a tampered version of Salesforce's Data Loader. Specializing in voice-phishing campaigns, these scammers have targeted various sectors including hospitality and retail since the year's start, convincing English-speaking employees to inadvertently compromise sensitive data. They use social engineering tactics that mimic IT support personnel, demonstrating a sophisticated approach to cybercrime that overlaps with other groups, yet remains distinctly organized.
A group known as UNC6040 has been exploiting voice-phishing tactics to deceive employees into installing a modified version of Salesforce's Data Loader for sensitive data theft.
The criminals successfully impersonate IT support personnel, tricking workers in large organizations to download malicious software, impacting up to 20 different entities.
Collection
[
|
...
]