79a. Workday Data Breach: CRM Data Under Attack!
Why social engineering attacks are targeting Salesforce customers and how companies can protect themselves
1) What Happened at Workday
On August 18, 2025, Workday—one of the world’s largest HR and finance software providers—disclosed that attackers accessed a third-party CRM system and stole business contact details (names, emails, phone numbers).
The good news: there is no evidence customer payroll, financial, or HR records inside Workday’s cloud were touched.
The bad news: this was part of a widespread attack campaign hitting Salesforce customers around the globe—including Google, Adidas, Dior, Qantas, and others. Attackers are proving that CRM platforms are now one of the most valuable targets in business.
Keep reading with a 7-day free trial
Subscribe to Cybersecurity News by Jose Bolanos MD to keep reading this post and get 7 days of free access to the full post archives.