A new wave of cyber extortion has rocked the enterprise world as the Scattered LAPSUS$ Hunters—a coalition formed from the notorious Lapsus$, Scattered Spider, and ShinyHunters groups—attempted to ransom Salesforce, claiming to have stolen data from 39 of its customers. When Salesforce refused to negotiate, the hackers retaliated by publishing the records of six companies, including Fujifilm, Albertsons, GAP, Qantas, and Vietnam Airlines.
The fallout has been severe. Vietnam Airlines saw 7.3 million customer accounts exposed, revealing names, emails, phone numbers, and loyalty details, while Qantas confirmed it was investigating an incident affecting millions of flyers. In contrast, Telstra quickly refuted claims of a 19-million-record breach, proving the data had been scraped from public sources.
This attack underscores a dangerous new trend in supply chain extortion, where threat actors leverage a central service provider to pressure its entire client base. It also exposes how modern cybercrime blends real breaches with exaggerated claims to sow panic and force payments.
#Salesforce #LAPSUS #DataBreach #CyberExtortion #Qantas #VietnamAirlines #Fujifilm #Albertsons #Telstra #Cybersecurity #Infosec #DarkWeb #SupplyChainAttack #Ransomware
