The technology developer and human resources tools Workday has been the victim of a hackingas confirmed by those responsible through a statement. For now it is unknown how much information the attackers have managed to capture, but it has been confirmed that the data of some of its users have been compromised, among which are their names, email addresses and telephone numbers. Also various business data, such as business contact information.
Currently, Workday has more than 11,000 company clients, and 70 million users worldwide, and apparently the security gap that it has suffered has had its origin in some of the relations of relations with clients of third parties with which it is related.
For now, according to the company, there is no indication that there have been access to data or the services of customers that appear in those databases. However, they are worried that although the scope of hacking and the gap seem limited, the data obtained can cause other gaps and attacks using social engineering techniques.
Apparently, according to Bleeping Computer, the attack that has affected Workday took place on August 6, so the company has taken time to confirm it publicly, it may to confirm its scope and details.
Everything indicates that the hacking that Workday has suffered is part of a major gap in Salesforce databases, which has already affected several companies. Among the companies that have already been affected as a consequence of hackeos to Salesforce CRM systems are Adidas, Google, the Qanta and Cisco airline.
These attacks have been attributed to a hacker group known as Shiny Hunterswho perform most of their misdeeds through social engineering and voice phishing attacks. Hence, Workday is notifying its clients that be careful with the social engineering mechanisms that can lead to an intrusion in their systems and theft of information.
