By Rhys Fisher
Publication Date: 2026-04-02 14:24:00
ShinyHunters, one of the more prolific cybercrime groups operating today, is claiming to have stolen over three million Salesforce records in a Cisco Systems data breach.
Earlier this week, the group posted extortion demands on its dark web victim page, reporting that it had stolen over three million Salesforce records.
The records in the data breach contained personally identifiable information (PII), alongside GitHub repositories, AWS buckets, and other internal corporate data.
Cisco has until April 3rd to comply, or face what the hackers describe as “several annoying (digital) problems.”
The data is said to have been obtained via three separate breaches:
- A voice phishing (vishing) attack attributed to UNC6040
- An exploit of Salesforce Aura
- Unauthorized access to AWS accounts
But the customer relationship management angle here is what should be catching the eye of CX leaders, because the story doesn’t start in March 2026.
You can find out…