Workiva customer data exposure from third-party CRM
Data Leak
Summary
Hide ▲
Show ▼
Workiva confirmed customer data theft from a third-party CRM, exposing a limited set of contact details and support ticket content tied to affected customers. The company said the Workiva platform and the data inside it were not compromised, but the stolen records could still fuel spear-phishing against customers. The exposure sits within the broader Salesforce-linked data theft wave affecting large organizations.
Related Happenings
BlackFile victims' Salesforce and SharePoint data leak
Data Leak
First: 24.04.2026 21:26
Last: 24.04.2026 21:26
Sources 1
About this happening:
BlackFile's **stolen documents** were published on a **dark web leak site**, exposing employee and business records taken from **Salesforce** and **SharePoint** environments. The...
BlackFile victims' Salesforce and SharePoint data leak
Data LeakAbout this happening: BlackFile's **stolen documents** were published on a **dark web leak site**, exposing employee and business records taken from **Salesforce** and **SharePoint** environments. The...
AkzoNobel partial Anubis data leak
Data Leak
First: 04.03.2026 01:00
Last: 04.03.2026 01:00
Sources 1
About this happening:
**AkzoNobel** faces a **partial data leak** after **Anubis ransomware** claimed it stole **170GB of data** and **almost 170,000 files**. The leak site posted **sample screenshots*...
AkzoNobel partial Anubis data leak
Data LeakAbout this happening: **AkzoNobel** faces a **partial data leak** after **Anubis ransomware** claimed it stole **170GB of data** and **almost 170,000 files**. The leak site posted **sample screenshots*...
Wynn Resorts hit by cyberattack
Incident
First: 24.02.2026 23:51
Last: 24.02.2026 23:51
Sources 1
About this happening:
**Wynn Resorts** confirmed an **employee data breach** after an unauthorized third party stole data from its systems, creating exposure risk for staff records. The company said it...
Wynn Resorts hit by cyberattack
IncidentAbout this happening: **Wynn Resorts** confirmed an **employee data breach** after an unauthorized third party stole data from its systems, creating exposure risk for staff records. The company said it...
ShellForce-affiliated leak site publishes stolen identity, corporate, and résumé records
Data Leak
First: 09.02.2026 23:14
Last: 09.02.2026 23:14
Sources 1
About this happening:
A **ShellForce**-affiliated leak site is publicly posting **stolen identity records**, **corporate data**, and **résumé databases**, turning intrusions into immediate exposure ris...
ShellForce-affiliated leak site publishes stolen identity, corporate, and résumé records
Data LeakAbout this happening: A **ShellForce**-affiliated leak site is publicly posting **stolen identity records**, **corporate data**, and **résumé databases**, turning intrusions into immediate exposure ris...
CrowdStrike customer data exposed after CrowdStrike breach
Data Leak
First: 21.11.2025 18:48
Last: 21.11.2025 18:48
Sources 1
About this happening:
**CrowdStrike** confirmed that a **suspicious insider** externally shared **screenshots from internal systems**, exposing internal material to **unnamed threat actors** and trigge...
CrowdStrike customer data exposed after CrowdStrike breach
Data LeakAbout this happening: **CrowdStrike** confirmed that a **suspicious insider** externally shared **screenshots from internal systems**, exposing internal material to **unnamed threat actors** and trigge...
Timeline
-
03.09.2025 19:40 2 articles · 8mo ago
Workiva notifies customers of third-party CRM data theft
Initial DisclosureWorkiva told affected customers that attackers who accessed a connected third-party CRM exfiltrated a limited set of business contact information, including names, email addresses, phone numbers, and support ticket content. Workiva said its own platform and the data within it were not accessed or compromised, and it warned that the stolen records could be used for spear-phishing and that support requests should come only through official channels.
Show sources
- SaaS giant Workiva discloses data breach after Salesforce attack — www.bleepingcomputer.com — 03.09.2025 19:40
- SaaS giant Workiva discloses data breach after Salesforce attack — www.bleepingcomputer.com — 03.09.2025 19:40