Google hit by network compromise
Incident
Summary
Hide ▲
Show ▼
Google confirmed a June 2025 compromise of one corporate Salesforce instance, and attackers took largely public business contact data before access was cut off. The incident adds a named-victim breach to the broader Salesforce OAuth abuse wave tied to ShinyHunters-linked activity.
Related Happenings
ShinyHunters-linked Salesforce intrusion campaign
Campaign
H score45
First: 14.07.2026 09:19
Last: 14.07.2026 09:19
Sources 1
How related:
In research published July 13, Microsoft mapped the campaigns, which ran from mid-2025 into mid-2026, to three distinct techniques.
About this happening:
A **ShinyHunters-linked campaign** is abusing **Salesforce** trust relationships to access CRM data across **retail, education, and manufacturing** tenants. The operation combines...
ShinyHunters-linked Salesforce intrusion campaign
CampaignHow related: In research published July 13, Microsoft mapped the campaigns, which ran from mid-2025 into mid-2026, to three distinct techniques.
About this happening: A **ShinyHunters-linked campaign** is abusing **Salesforce** trust relationships to access CRM data across **retail, education, and manufacturing** tenants. The operation combines...
Luxury jewelry retailer hit by ransomware attack
Incident
H score45
First: 07.07.2026 16:27
Last: 07.07.2026 16:27
Sources 1
About this happening:
A **luxury jewelry retailer** suffered a **help-desk social engineering intrusion** in **May 2025** that led to account takeover and the theft of **at least 77 gigabytes** of data...
Luxury jewelry retailer hit by ransomware attack
IncidentAbout this happening: A **luxury jewelry retailer** suffered a **help-desk social engineering intrusion** in **May 2025** that led to account takeover and the theft of **at least 77 gigabytes** of data...
Medical institution in North America hit by data theft breach
Incident
H score26
First: 15.06.2026 17:00
Last: 15.06.2026 17:00
Sources 1
About this happening:
A **North American medical institution** suffered a **REDCap breach** that enabled **InfiniteRed** deployment and sensitive-data theft, leaving the network compromised for more th...
Medical institution in North America hit by data theft breach
IncidentAbout this happening: A **North American medical institution** suffered a **REDCap breach** that enabled **InfiniteRed** deployment and sensitive-data theft, leaving the network compromised for more th...
UNC6508 China-linked REDCap espionage campaign
Campaign
H score39
First: 15.06.2026 17:00
Last: 15.06.2026 17:00
Sources 1
About this happening:
**UNC6508** ran a **China-linked espionage campaign** against **exposed REDCap servers** used by **North American medical, academic, and military research networks**. The operatio...
UNC6508 China-linked REDCap espionage campaign
CampaignAbout this happening: **UNC6508** ran a **China-linked espionage campaign** against **exposed REDCap servers** used by **North American medical, academic, and military research networks**. The operatio...
FBI takedown of Outsider Enterprise phishing service
Law Enforcement
H score63
First: 14.06.2026 17:36
Last: 14.06.2026 17:36
Sources 1
About this happening:
The **FBI** and partners **dismantled** **Outsider Enterprise**, a **phishing-as-a-service** operation tied to **thousands of phishing websites** and large-scale credential theft....
FBI takedown of Outsider Enterprise phishing service
Law EnforcementAbout this happening: The **FBI** and partners **dismantled** **Outsider Enterprise**, a **phishing-as-a-service** operation tied to **thousands of phishing websites** and large-scale credential theft....
Timeline
-
14.07.2026 09:19 2 articles · 3h ago
Google hit by network compromise
Initial DisclosureGoogle identified a **corporate Salesforce instance** compromise in **June 2025** after attackers removed **business contact data** and the company cut off access. The confirmed breach gave the broader Salesforce intrusion wave a named-victim incident anchor.
Show sources
- Microsoft Maps Year-Long ShinyHunters-Linked Salesforce Data Theft Across Three Paths — thehackernews.com — 14.07.2026 09:19
- Microsoft Maps Year-Long ShinyHunters-Linked Salesforce Data Theft Across Three Paths — thehackernews.com — 14.07.2026 09:19