Google Hacked By SHINYHUNTERS

Dopious

Senior Member
Founding Member
Sapphire Member
Patron
Bronze Star Bronze Star Bronze Star Bronze Star Bronze Star
Joined
Apr 5, 2025
Messages
1,842
Reaction Score
5,620
Feedback
4 / 0 / 0
This is a translated post, if you want to read the original, see original source at the bottom.

Google recently sent out an email stating that they had been hacked by the group ShinyHunters or more correctly written UNC6240 who claim to be ShinyHunters. The group uses a type of Vishing method to obtain an 8-digit token for Salesforce. Because it was an external instance of the Salesforce software that was hacked, but which contained customer data from, among other things, the Google Ads service.

The Google Threat Intelligence Group (GTIG) also notes that the group’s tactics have evolved over time. They have moved from using Salesforce Dataloader to using their own scripts (typically in Python), making them harder to track as they use Mullvad VPN and Tor to both intrude and exfiltrate customer data. The use of compromised accounts to register attacked applications has also increased.

Google conducted a forensics operation on one of its affected Salesforce instances in June. GTIG analysis showed that only limited, mostly public company data was exfiltrated for a short period of time before access was disabled.

As countermeasures, GTIG recommends, among other things, that the principle of least privilege is strictly applied, that the management of connected apps is restricted and carefully reviewed, that access is regulated via IP policies, and that Salesforce Shield support (transaction security, event monitoring) is used to monitor and block unusual activity. Furthermore, the importance of widespread use of multi-factor authentication is emphasized.

Source: https://kryptera.se/google-hackade-av-shinyhunters/
 
They bullshit have made my life hell in last two years, should be hacked completely
It's our fault to rely on their stupid platform which favors google ads hustlers.
Their stupid service is impossible to get positive ROI on.
Only if you break their TOS you can get something.
 
It's our fault to rely on their stupid platform which favors google ads hustlers.
Their stupid service is impossible to get positive ROI on.
Only if you break their TOS you can get something.
Some professions / niches get VERY positive ROI. I get it's not necessarily the case in all niches, tbh I had a wtf moment when trying to get some gads traffic for my agency 😂. Are you talking about aff now? It's only profitable on treshold accounts?
 
Are you talking about aff now? It's only profitable on treshold accounts?
Not really. I saw it fail for real businesses as well.

Some professions / niches get VERY positive ROI.
You can always do something about LTV, AOV and similar things.
But that won't work without a lot of money and experience already.

It's hell for starters.
 
Not really. I saw it fail for real businesses as well.


You can always do something about LTV, AOV and similar things.
But that won't work without a lot of money and experience already.

It's hell for starters.
No, I mean some niches in Poland you pay less than 1000 pln ad spend per month and get shitloads of leads. Not the case for agency sadly 😂. Although I saw some cheaper keywords but I don't think I want the type of client that these cheaper keywords would bring me. There are a lot of niches that are just outright too expensive on Google Ads, especially for small businesses, so not really arguing with you here, just saying it depends.
 
Hi from the hacker team we dislike Google and people without ferrets so at the moment we hacked your ip to get your delivery done just done
 

Attachments

  • cf91d014-e82e-4207-ae91-204d78754316.png
    cf91d014-e82e-4207-ae91-204d78754316.png
    149.7 KB · Views: 23
Weakness revealed by the might G...
 
Back
Top