[Security News] Farmers Insurance Data Breach From Salesforce Attack
20th August 2025
Farmers Insurance Data Breach From Salesforce Attack
Farmers Insurance disclosed a data breach affecting 1.1 million customers after a third-party vendor was compromised in the widespread Salesforce attacks. The stolen data includes names, addresses, birth dates, driver’s license numbers, and parts of Social Security numbers. The breach was detected on May 29, 2025, with notifications sent to affected individuals in August. The incident is linked to the ShinyHunters cybercrime group, which has also targeted major firms like Google, Cisco, Workday, and Adidas.
Source: Bleeping Computer, Tech Rader
Colt Customer Data Stolen in Ransomware Attack
A ransomware attack on Colt Technology Services on August 12, 2025, resulted in the compromise of customer data from the company’s business support systems. Colt emphasized the business support systems remain segregated from customer infrastructure networks. In response to the attack, Colt took several systems offline, including their customer portal and other APIs, as a precautionary measure. The company has engaged external forensic investigators, notified law enforcement, and established a call center for customers to check if their data was affected.
Source: Security Week, Infosecurity Magazine
850,000 Customers Impacted as Orange Belgium Discloses Data Breach
Orange Belgium has confirmed a data breach that affected approximately 850,000 customer accounts. The breach, which was discovered in late July, exposed personal information including names, phone numbers, SIM card numbers, PUK codes, and tariff plans. The company has stated that sensitive data such as passwords and banking details were not compromised. In response to the incident, Orange Belgium has implemented new security measures, including enhanced verification processes, to prevent SIM swap fraud. The company is in the process of notifying affected customers.
Source: Cyber Insider, Bleeping Computer
Workday Data Breach After Salesforce Attack
A social engineering attack on a third-party CRM platform caused data breach to HR giant Workday . The attackers, identified as the ShinyHunters extortion group, gained access to business contact information, such as names, email addresses, and phone numbers. The breach is part of a larger campaign by the ShinyHunters group that has targeted other companies by tricking employees into linking malicious apps to their Salesforce accounts. Workday discovered the breach on August 6th and has since notified potentially affected customers. Thankfully, the breach did not affect customer tenants, but the stolen contact information could be used for future scams.
Source: Technology Magazine, CPO Magazine
Lovable, AI Website Builder, Abused For Hacking Activities
The AI website builder Lovable is increasingly being used by cybercriminals to create malicious websites. A report from Proofpoint has identified thousands of Lovable-hosted URLs in email campaigns since February, impersonating well-known brands for activities such as phishing and malware distribution. Specific campaigns include Tycoon phishing platform to steal Microsoft credentials and another impersonating UPS to steal credit card information. While Lovable has implemented measures like real-time detection and daily scans to combat this abuse, malicious sites are still being created on the platform.
Source: Bleeping Computer, Hackread
Click here to subscribe our Newsletter
Check out Penta Security’s product lines:
Web Application Firewall: WAPPLES
Database Encryption: D.AMO
Click here for inquiries regarding the partner system of Penta Security
Check out the product lines of Cloudbric by Penta Security:
Cloud-based Fully Managed WAAP: Cloudbric WAF+
Agent based Zero Trust Network Access Solution: Cloudbric PAS
Agentless Zero Trust Network Access Solution: Cloudbric RAS
Click here for inquiries regarding the partner system of Cloudbric