Latest news with #AJVicens
Yahoo
09-06-2025
- Business
- Yahoo
Whole Foods supplier United Natural Foods says cyber incident disrupted operations
By AJ Vicens (Reuters) -United Natural Foods Inc one of the largest U.S. grocery distributors whose clients include Whole Foods, took certain systems offline in recent days after the discovery of unauthorized activity on internal networks, the company said on Monday. A Whole Foods spokesperson told Reuters in an email on Monday that the company was 'working to restock our shelves as quickly as possible' and referred additional questions back to United Natural. Shares of United Natural fell more than 8% during Monday's session and closed down by almost 7% at $25.94. United Natural, based in Rhode Island, said in a June 9 filing with the Securities and Exchange Commission that it 'proactively' took some systems offline after becoming aware June 5 of unauthorized activity on certain networks. The company said the incident temporarily hurt its "ability to fulfill and distribute customer orders.' It added that the incident "is expected to continue to cause temporary disruptions" to its operations. There have been a spate of cyber incidents affecting major retailers in the UK and the U.S. recently, including Marks & Spencer, Co-op, Harrods and Victoria's Secret. United Natural did not specify the "unauthorized activity." In the past, disruptions that caused companies to take actions similar to those it described have often been linked to ransomware incidents, where extortion-minded cybercriminals disable a firm's computers by encrypting them, promising to release the decryption key only in exchange for massive cryptocurrency payments. United Natural Foods is the largest publicly traded wholesale distributor of 'healthier food options' in the U.S. and Canada, according to its website. In May 2024 the company announced an eight-year extension to serve as primary distributor for Amazon-owned Whole Foods. The FBI did not immediately respond to a request for comment. United Natural Foods reported $8.2 billion in net sales in the 13-week period ending February 1, 2025. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
09-06-2025
- Business
- Yahoo
Whole Foods supplier United Natural Foods says cyber incident disrupted operations
By AJ Vicens (Reuters) -United Natural Foods Inc one of the largest U.S. grocery distributors whose clients include Whole Foods, took certain systems offline in recent days after the discovery of unauthorized activity on internal networks, the company said on Monday. A Whole Foods spokesperson told Reuters in an email on Monday that the company was 'working to restock our shelves as quickly as possible' and referred additional questions back to United Natural. Shares of United Natural fell more than 8% during Monday's session and closed down by almost 7% at $25.94. United Natural, based in Rhode Island, said in a June 9 filing with the Securities and Exchange Commission that it 'proactively' took some systems offline after becoming aware June 5 of unauthorized activity on certain networks. The company said the incident temporarily hurt its "ability to fulfill and distribute customer orders.' It added that the incident "is expected to continue to cause temporary disruptions" to its operations. There have been a spate of cyber incidents affecting major retailers in the UK and the U.S. recently, including Marks & Spencer, Co-op, Harrods and Victoria's Secret. United Natural did not specify the "unauthorized activity." In the past, disruptions that caused companies to take actions similar to those it described have often been linked to ransomware incidents, where extortion-minded cybercriminals disable a firm's computers by encrypting them, promising to release the decryption key only in exchange for massive cryptocurrency payments. United Natural Foods is the largest publicly traded wholesale distributor of 'healthier food options' in the U.S. and Canada, according to its website. In May 2024 the company announced an eight-year extension to serve as primary distributor for Amazon-owned Whole Foods. The FBI did not immediately respond to a request for comment. United Natural Foods reported $8.2 billion in net sales in the 13-week period ending February 1, 2025.
Time of India
05-06-2025
- Business
- Time of India
Hackers abuse modified Salesforce app to steal data, extort companies, Google says
By AJ Vicens Hackers are tricking employees at companies in Europe and the Americas into installing a modified version of a Salesforce-related app, allowing the hackers to steal reams of data, gain access to other corporate cloud services and extort those companies, Google said on Wednesday. The hackers - tracked by the Google Threat Intelligence Group as UNC6040 - have "proven particularly effective at tricking employees" into installing a modified version of Salesforce 's Data Loader, a proprietary tool used to bulk import data into Salesforce environments, the researchers said. The hackers use voice calls to trick employees into visiting a purported Salesforce connected app setup page to approve the unauthorized, modified version of the app, created by the hackers to emulate Data Loader. If the employee installs the app, the hackers gain "significant capabilities to access, query, and exfiltrate sensitive information directly from the compromised Salesforce customer environments," the researchers said. The access also frequently gives the hackers the ability to move throughout a customer's network, enabling attacks on other cloud services and internal corporate networks. Technical infrastructure tied to the campaign shares characteristics with suspected ties to the broader and loosely organized ecosystem known as "The Com," known for small, disparate groups engaging in cybercriminal and sometimes violent activity, the researchers said. A Google spokesperson did not share additional details about how many companies have been targeted as part of the campaign, which has been observed over the past several months. A Salesforce spokesperson told Reuters in an email that "there's no indication the issue described stems from any vulnerability inherent in our platform." The spokesperson said the voice calls used to trick employees "are targeted social engineering scams designed to exploit gaps in individual users' cybersecurity awareness and best practices." The spokesperson declined to share the specific number of affected customers, but said that Salesforce was "aware of only a small subset of affected customers," and said it was "not a widespread issue." Salesforce warned customers of voice phishing , or "vishing," attacks and of hackers abusing malicious, modified versions of Data Loader in a March 2025 blog post.
Yahoo
04-06-2025
- Business
- Yahoo
Hackers abuse modified Salesforce app to steal data, extort companies, Google says
By AJ Vicens (Reuters) -Hackers are tricking employees at companies in Europe and the Americas into installing a modified version of a Salesforce-related app, allowing the hackers to steal reams of data, gain access to other corporate cloud services and extort those companies, Google said on Wednesday. The hackers – tracked by the Google Threat Intelligence Group as UNC6040 – have 'proven particularly effective at tricking employees' into installing a modified version of Salesforce's Data Loader, a proprietary tool used to bulk import data into Salesforce environments, the researchers said. The hackers use voice calls to trick employees into visiting a purported Salesforce connected app setup page to approve the unauthorized, modified version of the app, created by the hackers to emulate Data Loader. If the employee installs the app, the hackers gain 'significant capabilities to access, query, and exfiltrate sensitive information directly from the compromised Salesforce customer environments,' the researchers said. The access also frequently gives the hackers the ability to move throughout a customer's network, enabling attacks on other cloud services and internal corporate networks. Technical infrastructure tied to the campaign shares characteristics with suspected ties to the broader and loosely organized ecosystem known as 'The Com,' known for small, disparate groups engaging in cybercriminal and sometimes violent activity, the researchers said. A Google spokesperson told Reuters that roughly 20 organizations have been affected by the UNC6040 campaign, which has been observed over the past several months. A subset of those organizations had data successfully exfiltrated, the spokesperson said. A Salesforce spokesperson told Reuters in an email that 'there's no indication the issue described stems from any vulnerability inherent in our platform.' The spokesperson said the voice calls used to trick employees 'are targeted social engineering scams designed to exploit gaps in individual users' cybersecurity awareness and best practices.' The spokesperson declined to share the specific number of affected customers, but said that Salesforce was "aware of only a small subset of affected customers," and said it was "not a widespread issue." Salesforce warned customers of voice phishing, or "vishing," attacks and of hackers abusing malicious, modified versions of Data Loader in a March 2025 blog post.
The Star
04-06-2025
- Business
- The Star
Hackers abuse modified Salesforce app to steal data, extort companies, Google says
FILE PHOTO: The company logo for is displayed on the Salesforce Tower in New York City, U.S., March 7, 2019. REUTERS/Brendan McDermid/File Photo (Reuters) -Hackers are tricking employees at companiesin Europe and the Americasinto installing a modified version of a Salesforce-related app, allowing the hackers to steal reams of data, gain access to other corporate cloud services and extort those companies, Google said on Wednesday. The hackers – tracked by the Google Threat Intelligence Group as UNC6040 – have 'proven particularly effective at tricking employees' into installing a modified version of Salesforce's Data Loader, a proprietary tool used to bulk import data into Salesforce environments, the researchers said. The hackers use voice calls to trick employees into visiting a purported Salesforce connected app setup page to approve the unauthorized, modified version of the app, created by the hackers to emulate Data Loader. If the employee installs the app, the hackers gain 'significant capabilities to access, query, and exfiltrate sensitive information directly from the compromised Salesforce customer environments,' the researchers said. The access also frequently gives the hackers the ability to move throughout a customer's network, enabling attacks on other cloud services and internal corporate networks. Technical infrastructure tied to the campaign shares characteristics with suspected ties to the broader and loosely organized ecosystem known as 'The Com,' known for small, disparate groups engaging in cybercriminal and sometimes violent activity, the researchers said. A Google spokesperson did not share additional details about how many companies have been targeted as part of the campaign, which has been observed over the past several months. A Salesforce spokesperson told Reuters in an email that 'there's no indication the issue described stems from any vulnerability inherent in our platform.' The spokesperson said the voice calls used to trick employees 'are targeted social engineering scams designed to exploit gaps in individual users' cybersecurity awareness and best practices.' The spokesperson declined to share the specific number of affected customers, but said that Salesforce was "aware of only a small subset of affected customers," and said it was "not a widespread issue." Salesforce warned customers of voice phishing, or "vishing," attacks and of hackers abusing malicious, modified versions of Data Loader in a March 2025 blog post. (Reporting by AJ Vicens in Detroit; Editing by Leslie Adler)
