2.5 billion Google accounts are at risk thanks to the skilled social engineering tactics employed by threat actor ShinyHunters, or UNC6040.

According to Google, ShinyHunters gained access to the massive database by tricking a staffer into installing a fake Data Loader app, which then gave ShinyHunters access to the database.

Additionally, Google stated that the information access by ShinyHunters was largely confined to basic and largely publicly available business information.

This continues to reinforce the importance of staying vigilant against social engineering tactics.

For more details on the incident, please visit: Salesforce Forced to Issue Data Theft Warning as Google Confirms It Is Among Victims | Salesforce Ben

For more information about social engineering attacks, and how you can defend against them, please visit: How to Train Employees on Social Engineering: A Step-by-Step Guide | Hook Security Blog