Yazılar

Hacker Group Claims Theft of Nearly 1 Billion Salesforce Records; Company Denies Breach

/in /tarafından

A hacker collective calling itself “Scattered LAPSUS$ Hunters” claims to have stolen nearly 1 billion records linked to Salesforce, the global cloud software giant, by targeting companies that use its platform. The group—believed to be behind recent ransomware attacks on major U.K. retailers including Marks & Spencer, Co-op, and Jaguar Land Rover—told Reuters the stolen data contains personally identifiable information (PII).

Salesforce, however, firmly denied that its systems were compromised. “At this time, there is no indication that the Salesforce platform has been compromised, nor is this activity related to any known vulnerability in our technology,” a company spokesperson said.

One hacker, identifying themselves as “Shiny,” told Reuters that the group did not directly hack Salesforce infrastructure but instead exploited its customers through “vishing”—a voice-phishing technique where attackers impersonate employees in calls to IT help desks to gain system access.

The group published a leak site on the dark web on Friday listing around 40 allegedly hacked companies, though it remains unclear how many are Salesforce clients. Both Salesforce and the hackers declined to confirm whether any ransom demands had been made.

In a June report, Google’s Threat Intelligence Group (TAG)—which tracks the hackers as “UNC6040”—said the group had been highly effective at deceiving employees into installing modified versions of Salesforce’s Data Loader, a proprietary tool used to import large volumes of customer data.

Google researchers also noted that the attackers’ infrastructure overlaps with an amorphous cybercriminal network known as “The Com”, a loosely connected ecosystem infamous for social engineering, ransomware, and even violent activity.

The claims come amid an ongoing U.K. police investigation into the earlier wave of cyberattacks that disrupted retail operations nationwide. In July, authorities arrested four individuals under 21 suspected of involvement in the breaches.

While Salesforce’s denial suggests its core systems remain intact, the episode underscores a growing cybersecurity challenge: attackers are increasingly bypassing well-secured platforms by manipulating the humans who use them.

As digital ecosystems become ever more interconnected, the breach—real or exaggerated—illustrates how even the most secure cloud providers can be dragged into the fallout of their customers’ weakest link: trust.

DeepSeek May Face Further Regulatory Actions, EU Privacy Watchdog Says

/in /tarafından

Europe’s privacy watchdog, the European Data Protection Board (EDPB), has indicated that the Chinese AI startup DeepSeek may face additional regulatory actions in the future. This statement comes after national privacy regulators in several European countries raised concerns over DeepSeek’s practices regarding personal data usage.

The EDPB’s announcement followed discussions among national data protection authorities (DPAs) at a monthly meeting on Tuesday. The regulators had already taken steps in Italy, where DeepSeek’s chatbot was blocked due to insufficient transparency regarding its use of personal data. In addition, enforcers in France, the Netherlands, Belgium, Luxembourg, and other nations have questioned DeepSeek about its data collection methods.

“Several DPAs have already started actions vis-a-vis DeepSeek, and there may be further actions in the future,” an EDPB spokesperson confirmed. As a result of these concerns, the EDPB expanded its taskforce, initially focused on Microsoft-backed OpenAI’s ChatGPT, to include DeepSeek. The taskforce was created in April 2023 to promote cooperation and information sharing on AI enforcement actions.

The regulators also emphasized the need for a coordinated response to sensitive matters and have decided to form a quick response team to address urgent issues. Europe’s General Data Protection Regulation (GDPR), which took effect in 2018, remains one of the strictest privacy laws globally, and the region continues to lead efforts in protecting citizens’ privacy rights.

South Korea’s Spy Agency Raises Concerns Over DeepSeek’s Data Practices

/in /tarafından

South Korea’s National Intelligence Service (NIS) has raised alarms about the Chinese AI application DeepSeek, accusing it of “excessively” collecting personal data. The NIS claims that the app uses all user input to train itself and has questioned how it handles sensitive national issues, such as the origin of kimchi.

The NIS issued an official notice last week to government agencies, urging them to take extra security precautions due to concerns over DeepSeek’s data collection practices. According to the spy agency, unlike other AI services, DeepSeek records chat histories and captures keyboard input patterns that can identify individuals. It also communicates with Chinese servers, such as volceapplog.com, which raises privacy concerns.

Several South Korean government ministries have already blocked access to DeepSeek, following the lead of Australia and Taiwan, which have also placed restrictions or issued warnings about the app. The NIS also alleged that DeepSeek provides advertisers with unrestricted access to user data and stores South Korean users’ information on servers in China. Under Chinese law, the Chinese government could request access to this data.

The app has also been criticized for providing conflicting responses to sensitive questions based on the language in which they are asked. For instance, when asked about the origin of kimchi, DeepSeek claimed the dish was Korean when the question was posed in Korean, but said it originated in China when asked in Chinese. This issue has been a source of tension between South Korea and China in recent years.

DeepSeek has also faced accusations of censoring politically sensitive topics, such as the 1989 Tiananmen Square protests. In response to questions about this, the app allegedly suggests users “Let’s talk about something else.”

DeepSeek did not respond to requests for comment. A Chinese foreign ministry spokesperson, when asked about South Korea’s actions, emphasized China’s commitment to data privacy and security, stating that the Chinese government ensures data protection in accordance with the law.