1. Website Planet
  2. >
  3. News
  4. >
  5. Google Confirms Salesforce CRM Breach
Google Confirms Salesforce CRM Breach

Google Confirms Salesforce CRM Breach

Headshot of Ivana Shteriova Written by: Ivana Shteriova
Headshot of Maggy Di Costanzo Reviewed by: Maggy Di Costanzo
Last updated: August 22, 2025
Google Threat Intelligence Group (GTIG) has confirmed a data breach in its Salesforce CRM database, linked to the hacking group ShinyHunters.

The attackers, also known as UNC6040, gained access to Google’s Salesforce CRM in June, likely through a social engineering attack.

After discovering the breach, Google responded by conducting an impact analysis and initiating mitigations. In a blog post, the company explained, “Analysis revealed that data was retrieved by the threat actor during a small window of time before the access was cut off.”

GTIG states that the group is known for large-scale data theft of Salesforce environments using voice phishing, posing as IT support. The method typically involves calling employees, especially in English-speaking offices of global companies, and convincing them to hand over credentials or approve a fraudulent Salesforce Data Loader application, which enables them to access sensitive information.

Then the group uses the stolen data to extort victims for financial gain, often months after the incidents occurred and sometimes in collaboration with other threat actors. Despite taking the necessary actions to prevent similar incidents in the future, GTIG warns that ShinyHunters may launch a data leak site (DLS) to monetize the stolen records, including those compromised in the Google Ads breach.

According to Cyber Security News, ShinyHunters already tried to extort Google, requesting 20 Bitcoins (approximately $2.3 million) from the company. Later, the group claimed the demand was made “for the lulz” and wasn’t a serious attempt at extortion.

The breached database system stored data of prospective Google Ads customers. According to GTIG, the compromised data included “largely publicly available business information” of small and medium-sized companies, including business names, contact details (e.g., email addresses, phone numbers), and related notes.

ShinyHunters hackers told Cyber Security News that they stole around 2.5 million records, information that Google has neither confirmed nor denied. The company has already notified the impacted individuals.

While Google’s recent data breach involved mostly public data and no serious consequences have been reported, the incident shows that no organization, large or small, is immune to cybercrime. Last year, Russian government hackers were found spying on Microsoft executives.

As security experts warn, “If it can happen to one of the wealthiest and best-defended companies in the world, it can happen to anyone.”

With human error often playing a role in data breaches, experts advise taking a layered approach to security that combines advanced security awareness training with strict access controls.

Ivana Shteriova
Writer:
Ivana Shteriova
Ivana is a full-time content writer and expert reviewer passionate about tech, finance, business, and too many other things to name. After getting her bachelor’s degree in Economics, she decided to ditch a career in accounting and turn her passion into a full-time writing affair. You can find her listening to finance podcasts, reading self-help books, glamming up, and rocking bold outfits. She’s also advocating for animal welfare and women’s rights.

Maggy Di Costanzo
Editor:
Maggy Di Costanzo
Maggy Di Costanzo is an editor at Website Planet, specializing in reviews of e-commerce platforms, website builders, and web hosting services. With experience as a freelance AI content specialist, editor, and writer, she brings a versatile skill set from industries like marketing and real estate. When she’s not editing or staying updated on SEO trends, Maggy enjoys going on hikes with her dog, planning dinner parties, and tracking the stock market.

Follow our experts on
Rate this Article
4.0 Voted by 3 users
You already voted! Undo
This field is required Maximal length of comment is equal 80000 chars Minimal length of comment is equal 10 chars
Any comments?
Reply
View %s replies
View %s reply
More news
Show more
Reply to
0 out of minimum 50 characters
Complete your reply Complete your comment
The name is too short The name is too long The name contains invalid characters
The email is required The email is incorrect
Thank you, - your reply was submitted successfully! your comment was submitted successfully!
We check all user comments within 48 hours to make sure they are from real people like you. We're glad you found this article useful - we would appreciate it if you let more people know about it.
Popup final window
Share this blog post with friends and co-workers right now:
1 1 1
Thank you, , your comment was submitted successfully!

We check all comments within 48 hours to make sure they're from real users like you. In the meantime, you can share your comment with others to let more people know what you think.

Thank you for signing up!

Once a month you will receive interesting, insightful tips, tricks, and advice to improve your website performance and reach your digital marketing goals!

1 1 1

So happy you liked it!

Share it with your friends!

1 < 1 1

Or review us on 1

3721695
50
5000
143203165