Yazılar

Hacker Group Claims Theft of Nearly 1 Billion Salesforce Records; Company Denies Breach

/in /tarafından

A hacker collective calling itself “Scattered LAPSUS$ Hunters” claims to have stolen nearly 1 billion records linked to Salesforce, the global cloud software giant, by targeting companies that use its platform. The group—believed to be behind recent ransomware attacks on major U.K. retailers including Marks & Spencer, Co-op, and Jaguar Land Rover—told Reuters the stolen data contains personally identifiable information (PII).

Salesforce, however, firmly denied that its systems were compromised. “At this time, there is no indication that the Salesforce platform has been compromised, nor is this activity related to any known vulnerability in our technology,” a company spokesperson said.

One hacker, identifying themselves as “Shiny,” told Reuters that the group did not directly hack Salesforce infrastructure but instead exploited its customers through “vishing”—a voice-phishing technique where attackers impersonate employees in calls to IT help desks to gain system access.

The group published a leak site on the dark web on Friday listing around 40 allegedly hacked companies, though it remains unclear how many are Salesforce clients. Both Salesforce and the hackers declined to confirm whether any ransom demands had been made.

In a June report, Google’s Threat Intelligence Group (TAG)—which tracks the hackers as “UNC6040”—said the group had been highly effective at deceiving employees into installing modified versions of Salesforce’s Data Loader, a proprietary tool used to import large volumes of customer data.

Google researchers also noted that the attackers’ infrastructure overlaps with an amorphous cybercriminal network known as “The Com”, a loosely connected ecosystem infamous for social engineering, ransomware, and even violent activity.

The claims come amid an ongoing U.K. police investigation into the earlier wave of cyberattacks that disrupted retail operations nationwide. In July, authorities arrested four individuals under 21 suspected of involvement in the breaches.

While Salesforce’s denial suggests its core systems remain intact, the episode underscores a growing cybersecurity challenge: attackers are increasingly bypassing well-secured platforms by manipulating the humans who use them.

As digital ecosystems become ever more interconnected, the breach—real or exaggerated—illustrates how even the most secure cloud providers can be dragged into the fallout of their customers’ weakest link: trust.

Netskope hits $8.8 billion valuation in Nasdaq debut as shares surge

/in /tarafından

Cybersecurity firm Netskope debuted on the Nasdaq on Thursday with a market valuation of $8.79 billion, as its shares surged 21% above the initial offer price. The Santa Clara–based company priced its IPO at $19 per share, raising $908.2 million by selling 47.8 million shares. The stock opened at $23, reflecting strong investor appetite.

The U.S. IPO market is experiencing its strongest wave in years, with recent successes like Figma highlighting pent-up demand. Netskope’s appeal is fueled by rising corporate spending on cybersecurity, especially as AI-driven threats expand. “AI is right in our wheelhouse … enabling companies to leverage it safely,” CEO Sanjay Beri told Reuters.

Founded in 2012, Netskope delivers cloud-based security solutions that protect apps, data, and websites. The company had previously been valued at $7.5 billion in a 2021 ICONIQ-led funding round. Beri noted that the IPO was oversubscribed 20 times and that going public will expand Netskope’s visibility in the market.

Analysts caution that despite the sector’s strong demand, IPO performances remain mixed. Rubrik has soared since listing, while SailPoint has struggled. Netskope’s future success will hinge on its profitability path and ability to navigate a competitive market against rivals like Palo Alto Networks and Zscaler.

Netskope raises $908.2 million in U.S. IPO, valued at $7.26 billion

/in /tarafından

Cloud cybersecurity firm Netskope raised $908.2 million in its U.S. initial public offering, the company said on Wednesday. The Santa Clara-based firm sold about 47.8 million shares at $19 each, pricing at the top of its target range of $17 to $19 per share.

The IPO gives Netskope a valuation of $7.26 billion, slightly below the $7.5 billion it reached in a 2021 funding round led by ICONIQ. Investor demand for new listings has surged in recent weeks, following a string of strong debuts that helped ease earlier concerns tied to President Donald Trump’s tariffs, which had delayed several offerings earlier this year.

A wave of companies—from crypto platforms and fintechs to biotechs and coffee chains—has hit the market since Labor Day, signaling renewed appetite for IPOs. Earlier Wednesday, StubHub (STUB.N) also began trading on the NYSE in a closely watched consumer-focused debut.

Founded in 2012, Netskope develops cloud-based cybersecurity software that protects apps, websites, and data against digital threats. Cybersecurity has become a core budget item for global enterprises as attacks grow in frequency and sophistication.

Netskope reported revenue of $328 million in the six months ending July 31, up from $251 million a year earlier, while narrowing its net loss to $170 million from $207 million.

Morgan Stanley and J.P. Morgan led the offering, with Netskope set to trade on the Nasdaq under the ticker “NTSK.”