More than 2.5 billion Gmail users are at risk following a massive cyberattack that compromised a Google database managed through Salesforce’s cloud platform. Google disclosed that a cybercriminal group known as the ShinyHunters hacked a database of their accounts through the cloud-based software provider Salesforce
The attack, which began in June 2025, used social engineering tactics. According to Google’s Threat Intelligence Group (GTIG), scammers impersonated IT staff using phone calls and persuaded a Google employee to approve a malicious application connected to Salesforce. This gave attackers the ability to exfiltrate contact details, business names, and related notes.
Google has confirmed that no user passwords were stolen, but the stolen data is already being abused.
What can you do ?
- Update your password to a long, complex password
- Use two factor authentication on applications that offer it
- Remain vigilant and wary of phishing emails
Read more about it here.