Workday, a leading provider of human resources technology, has confirmed a data breach that exposed personal details from one of its third party customer databases. The stolen data includes names, email addresses, and phone numbers, which could be misused in social engineering attacks.
In a blog post published on Friday, the company said there is “no indication of access to customer tenants or the data within them.” These tenants usually hold sensitive corporate information, including employee files. Workday did not specify the scale of the breach or reveal which third party system was compromised.
The company serves more than 11,000 corporate clients and supports around 70 million users worldwide. The breach was first detected on 6 August.
Experts warn that the stolen data could be exploited for phishing or impersonation schemes, where cybercriminals trick individuals into sharing more sensitive information. The incident comes at a time when several attacks have targeted cloud based databases hosted on Salesforce. Companies such as Google, Cisco, Qantas, and Pandora have all recently reported data theft incidents linked to these systems.
Google confirmed that one of its Salesforce systems used for storing contact details of small and medium sized businesses was briefly compromised. The attackers, identified as the cybercriminal group UNC6040, used voice phishing or “vishing” calls. They impersonated IT staff and convinced employees to allow malicious software into the system. This gave them access to contact information, most of which was already publicly available, before the breach was stopped.
UNC6040 is known for targeting Salesforce platforms by abusing tools such as the Data Loader app. The group often uses fake versions of the app with misleading names like “My Ticket Portal” to trick employees during phishing calls.
Security experts say the Workday breach highlights the growing threat of social engineering and the need for organisations to strengthen employee awareness and cybersecurity defences.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream formerly known as CIO News LinkedIn Account | The Mainstream formerly known as CIO News Facebook | The Mainstream formerly known as CIO News Youtube | The Mainstream formerly known as CIO News Twitter |The Mainstream formerly known as CIO News Whatsapp Channel | The Mainstream formerly known as CIO News Instagram
About us:
The Mainstream formerly known as CIO News is a premier platform dedicated to delivering latest news, updates, and insights from the tech industry. With its strong foundation of intellectual property and thought leadership, the platform is well-positioned to stay ahead of the curve and lead conversations about how technology shapes our world. From its early days as CIO News to its rebranding as The Mainstream on November 28, 2024, it has been expanding its global reach, targeting key markets in the Middle East & Africa, ASEAN, the USA, and the UK. The Mainstream is a vision to put technology at the center of every conversation, inspiring professionals and organizations to embrace the future of tech.
