Workday reports a data breach after an intrusion into its CRM platform. Presumably, Workday is the next in line of recent hacks on Salesforce environments.
HR and AI company Workday reported last Friday a data breach. It would be the result of an intrusion via an external CRM platform. Workday states with a high degree of certainty that the intruders did not gain access to the customer environment, but customer contact information that could be used for fraud may have been stolen.
The attackers reportedly gained access using social engineering techniques: an attack method that is on the rise. By creating a fake authentication app, they lure employees into giving up their login credentials. Once they have the key, attackers can log in undetected. Workday quickly removed the intruders and took measures to prevent a follow-up incident.
Salesforce Hacks
The data breach at Workday doesn’t appear to be an isolated incident. Recently, multiple companies have experienced data breaches. The diverse list of victims includes major fashion brands, insurance companies, and technology companies, including Google and now Workday. After the attack on Google, hackers are targeting Gmail accounts en masse.
read also
Hackers Primarily Breach Systems through People: Social Engineering Attacks on the Rise
The incidents share the commonality that attackers broke into an “external CRM platform”. The common denominator here is likely Salesforce, although no vendor is mentioned by name in Workday’s official communication. The attacks do not stem from a direct vulnerability in Salesforce itself, but from human errors at client organizations.
Snowflake faced a similar situation last year. Salesforce issued a public warning on August 7 about social engineering attacks.