{"id":121265,"date":"2025-08-14T08:16:01","date_gmt":"2025-08-14T08:16:01","guid":{"rendered":"https:\/\/cybersecuritynews.com\/?p=121265"},"modified":"2025-08-14T13:15:23","modified_gmt":"2025-08-14T13:15:23","slug":"shinyhunters-possibly-collaborates-with-scattered-spider","status":"publish","type":"post","link":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/","title":{"rendered":"ShinyHunters Possibly Collaborates With Scattered Spider in Salesforce Attack Campaigns"},"content":{"rendered":"\n

The notorious ShinyHunters cybercriminal group has emerged from a year-long hiatus with a sophisticated new wave of attacks targeting Salesforce platforms across major organizations, including high-profile victims like Google.<\/p>\n\n\n\n

This resurgence marks a significant tactical evolution for the financially motivated threat actors, who have traditionally focused on database exploitation and credential theft rather than the complex social engineering schemes now being employed.<\/p>\n\n\n\n

What makes this campaign particularly alarming is its striking resemblance to operations typically attributed to the Scattered Spider hacking collective.<\/p>\n\n\n\n

The convergence of tactics suggests a potential collaboration between these two formidable threat groups, raising concerns about an escalating landscape of coordinated cybercriminal activity.<\/p>\n\n\n\n

The attacks have specifically targeted organizations across retail, aviation, and insurance sectors, with victims spanning luxury brands and technology service providers.<\/p>\n\n\n

\n
\"\"\/
ShinyHunters first gained notoriety by advertising 91 million Tokopedia user records for sale on \u201cEmpire Market\u201d in 2020 (Source – Reliaquest)<\/figcaption><\/figure><\/div>\n\n\n

ReliaQuest analysts identified<\/a> compelling evidence supporting this collaboration theory through comprehensive domain analysis and infrastructure investigation.<\/p>\n\n\n\n

The research revealed coordinated ticket-themed phishing domains and Salesforce credential harvesting pages, indicating a systematic approach to victim targeting.<\/p>\n\n\n\n

Most notably, investigators discovered the emergence of a BreachForums user with the alias “Sp1d3rhunters”\u2014a clever combination of both group names\u2014who was linked to previous ShinyHunters<\/a> breaches and appeared to leak Ticketmaster data in July 2024.<\/p>\n\n\n\n

The technical sophistication of these attacks represents a significant departure from ShinyHunters’ historical methods.<\/p>\n\n\n\n

The group has adopted Scattered Spider<\/a>‘s signature techniques, including highly targeted vishing campaigns where attackers impersonate IT support staff to manipulate victims into authorizing malicious “connected apps.”<\/p>\n\n\n\n

These applications masquerade as legitimate Salesforce tools while enabling large-scale data exfiltration.<\/p>\n\n\n\n

Advanced Infrastructure and Evasion Techniques<\/strong><\/h2>\n\n\n\n

The campaign’s infrastructure reveals meticulous planning and advanced evasion capabilities.<\/p>\n\n\n\n

Investigators uncovered multiple malicious domains registered between June 20-30, 2025, following consistent naming patterns such as ticket-lvmh.com<\/code>, ticket-dior.com<\/code>, and ticket-louisvuitton.com<\/code>.<\/p>\n\n\n\n

These domains shared common registry characteristics, including registration through GMO Internet using temporary email addresses like email@mailshan.com<\/code> and Cloudflare-masked nameservers for additional obfuscation<\/a>.<\/p>\n\n\n

\n
\"\"\/
Okta phishing page hosted at ticket-dior[.]com in June 2025 (Source – Reliaquest)<\/figcaption><\/figure><\/div>\n\n\n

The attackers deployed sophisticated phishing kits hosting single sign-on (SSO) login pages, with domains like dashboard-salesforce.com<\/code> actively serving Okta-branded credential harvesting interfaces.<\/p>\n\n\n

\n
\"\"\/
Phishing page hosted at dashboard-salesforce[.]com (Source – Reliaquest)<\/figcaption><\/figure><\/div>\n\n\n

The malicious infrastructure leveraged VPN obfuscation through Mullvad VPN services to perform data exfiltration<\/a> from compromised Salesforce instances.<\/p>\n\n\n\n

Particularly concerning is the rebranding of legitimate Salesforce “Data Loader” applications as “My Ticket Portal” during vishing campaigns, demonstrating the group’s ability to weaponize familiar business tools against unsuspecting employees.<\/p>\n\n\n\n

This tactical evolution, combined with the synchronized targeting patterns observed across both ShinyHunters and Scattered Spider operations, suggests that financial services and technology providers should prepare for intensified attacks in the coming months.<\/p>\n\n\n\n

Boost your SOC and help your team protect your business with free top-notch threat intelligence: Request TI Lookup Premium Trial<\/a>.<\/code><\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"

The notorious ShinyHunters cybercriminal group has emerged from a year-long hiatus with a sophisticated new wave of attacks targeting Salesforce platforms across major organizations, including high-profile victims like Google. This resurgence marks a significant tactical evolution for the financially motivated threat actors, who have traditionally focused on database exploitation and credential theft rather than the […]<\/p>\n","protected":false},"author":6,"featured_media":121357,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh2m2Ewtt9pCngMYWlhmx6moeCpD82Ngt7Jcfc8bzWL5VvwNkvUpGSsvC1X04uD7V_ypNdC3Y4lBdP9CiNfB0Zu2PF2McaQY_Wp5CFTd-Rf0JIc67bJbbUKMoepkTrcy7loj5JdlAENwPYJDzRbcUeNHO2HDUNbN8my_9vINZUEIFMOlT_254HpVZ8GBiQ\/s16000\/ShinyHunters%20Possibly%20Collaborates%20With%20Scattered%20Spider%20in%20Salesforce%20Attack%20Campaigns.webp","fifu_image_alt":"","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[11,48],"tags":[149,151],"class_list":{"0":"post-121265","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security-news","8":"category-threats","9":"tag-cyber-security","10":"tag-cyber-security-news"},"yoast_head":"\nShinyHunters Possibly Collaborates With Scattered Spider in Salesforce Attack Campaigns<\/title>\n<meta name=\"description\" content=\"ShinyHunters return with Salesforce attacks hitting major firms like Google, using tactics akin to Scattered Spider, sparking collab fears.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"ShinyHunters Possibly Collaborates With Scattered Spider in Salesforce Attack Campaigns\" \/>\n<meta property=\"og:description\" content=\"ShinyHunters return with Salesforce attacks hitting major firms like Google, using tactics akin to Scattered Spider, sparking collab fears.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/\" \/>\n<meta property=\"og:site_name\" content=\"Cyber Security News\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Hackingtutorialsandnews\" \/>\n<meta property=\"article:published_time\" content=\"2025-08-14T08:16:01+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-08-14T13:15:23+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh2m2Ewtt9pCngMYWlhmx6moeCpD82Ngt7Jcfc8bzWL5VvwNkvUpGSsvC1X04uD7V_ypNdC3Y4lBdP9CiNfB0Zu2PF2McaQY_Wp5CFTd-Rf0JIc67bJbbUKMoepkTrcy7loj5JdlAENwPYJDzRbcUeNHO2HDUNbN8my_9vINZUEIFMOlT_254HpVZ8GBiQ\/s16000\/ShinyHunters%20Possibly%20Collaborates%20With%20Scattered%20Spider%20in%20Salesforce%20Attack%20Campaigns.webp\" \/><meta property=\"og:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh2m2Ewtt9pCngMYWlhmx6moeCpD82Ngt7Jcfc8bzWL5VvwNkvUpGSsvC1X04uD7V_ypNdC3Y4lBdP9CiNfB0Zu2PF2McaQY_Wp5CFTd-Rf0JIc67bJbbUKMoepkTrcy7loj5JdlAENwPYJDzRbcUeNHO2HDUNbN8my_9vINZUEIFMOlT_254HpVZ8GBiQ\/s16000\/ShinyHunters%20Possibly%20Collaborates%20With%20Scattered%20Spider%20in%20Salesforce%20Attack%20Campaigns.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Tushar Subhra Dutta\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh2m2Ewtt9pCngMYWlhmx6moeCpD82Ngt7Jcfc8bzWL5VvwNkvUpGSsvC1X04uD7V_ypNdC3Y4lBdP9CiNfB0Zu2PF2McaQY_Wp5CFTd-Rf0JIc67bJbbUKMoepkTrcy7loj5JdlAENwPYJDzRbcUeNHO2HDUNbN8my_9vINZUEIFMOlT_254HpVZ8GBiQ\/s16000\/ShinyHunters%20Possibly%20Collaborates%20With%20Scattered%20Spider%20in%20Salesforce%20Attack%20Campaigns.webp\" \/>\n<meta name=\"twitter:creator\" content=\"@The_Cyber_News\" \/>\n<meta name=\"twitter:site\" content=\"@The_Cyber_News\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Tushar Subhra Dutta\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"ShinyHunters Possibly Collaborates With Scattered Spider in Salesforce Attack Campaigns","description":"ShinyHunters return with Salesforce attacks hitting major firms like Google, using tactics akin to Scattered Spider, sparking collab fears.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/","og_locale":"en_US","og_type":"article","og_title":"ShinyHunters Possibly Collaborates With Scattered Spider in Salesforce Attack Campaigns","og_description":"ShinyHunters return with Salesforce attacks hitting major firms like Google, using tactics akin to Scattered Spider, sparking collab fears.","og_url":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/","og_site_name":"Cyber Security News","article_publisher":"https:\/\/www.facebook.com\/Hackingtutorialsandnews","article_published_time":"2025-08-14T08:16:01+00:00","article_modified_time":"2025-08-14T13:15:23+00:00","og_image":[{"url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh2m2Ewtt9pCngMYWlhmx6moeCpD82Ngt7Jcfc8bzWL5VvwNkvUpGSsvC1X04uD7V_ypNdC3Y4lBdP9CiNfB0Zu2PF2McaQY_Wp5CFTd-Rf0JIc67bJbbUKMoepkTrcy7loj5JdlAENwPYJDzRbcUeNHO2HDUNbN8my_9vINZUEIFMOlT_254HpVZ8GBiQ\/s16000\/ShinyHunters%20Possibly%20Collaborates%20With%20Scattered%20Spider%20in%20Salesforce%20Attack%20Campaigns.webp","type":"","width":"","height":""},{"width":1600,"height":900,"url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh2m2Ewtt9pCngMYWlhmx6moeCpD82Ngt7Jcfc8bzWL5VvwNkvUpGSsvC1X04uD7V_ypNdC3Y4lBdP9CiNfB0Zu2PF2McaQY_Wp5CFTd-Rf0JIc67bJbbUKMoepkTrcy7loj5JdlAENwPYJDzRbcUeNHO2HDUNbN8my_9vINZUEIFMOlT_254HpVZ8GBiQ\/s16000\/ShinyHunters%20Possibly%20Collaborates%20With%20Scattered%20Spider%20in%20Salesforce%20Attack%20Campaigns.webp","type":"image\/jpeg"}],"author":"Tushar Subhra Dutta","twitter_card":"summary_large_image","twitter_image":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh2m2Ewtt9pCngMYWlhmx6moeCpD82Ngt7Jcfc8bzWL5VvwNkvUpGSsvC1X04uD7V_ypNdC3Y4lBdP9CiNfB0Zu2PF2McaQY_Wp5CFTd-Rf0JIc67bJbbUKMoepkTrcy7loj5JdlAENwPYJDzRbcUeNHO2HDUNbN8my_9vINZUEIFMOlT_254HpVZ8GBiQ\/s16000\/ShinyHunters%20Possibly%20Collaborates%20With%20Scattered%20Spider%20in%20Salesforce%20Attack%20Campaigns.webp","twitter_creator":"@The_Cyber_News","twitter_site":"@The_Cyber_News","twitter_misc":{"Written by":"Tushar Subhra Dutta","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"NewsArticle","@id":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/#article","isPartOf":{"@id":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/"},"author":{"name":"Tushar Subhra Dutta","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/7eb7d8d026aa5dd566f134d4def5c05c"},"headline":"ShinyHunters Possibly Collaborates With Scattered Spider in Salesforce Attack Campaigns","datePublished":"2025-08-14T08:16:01+00:00","dateModified":"2025-08-14T13:15:23+00:00","mainEntityOfPage":{"@id":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/"},"wordCount":461,"publisher":{"@id":"https:\/\/cybersecuritynews.com\/#organization"},"image":{"@id":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/#primaryimage"},"thumbnailUrl":"https:\/\/i2.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh2m2Ewtt9pCngMYWlhmx6moeCpD82Ngt7Jcfc8bzWL5VvwNkvUpGSsvC1X04uD7V_ypNdC3Y4lBdP9CiNfB0Zu2PF2McaQY_Wp5CFTd-Rf0JIc67bJbbUKMoepkTrcy7loj5JdlAENwPYJDzRbcUeNHO2HDUNbN8my_9vINZUEIFMOlT_254HpVZ8GBiQ\/s16000\/ShinyHunters%20Possibly%20Collaborates%20With%20Scattered%20Spider%20in%20Salesforce%20Attack%20Campaigns.webp?w=1600&resize=1600,900&ssl=1","keywords":["cyber security","cyber security news"],"articleSection":["Cyber Security News","Threats"],"inLanguage":"en-US","copyrightYear":"2025","copyrightHolder":{"@id":"https:\/\/cybersecuritynews.com\/#organization"}},{"@type":"WebPage","@id":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/","url":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/","name":"ShinyHunters Possibly Collaborates With Scattered Spider in Salesforce Attack Campaigns","isPartOf":{"@id":"https:\/\/cybersecuritynews.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/#primaryimage"},"image":{"@id":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/#primaryimage"},"thumbnailUrl":"https:\/\/i2.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh2m2Ewtt9pCngMYWlhmx6moeCpD82Ngt7Jcfc8bzWL5VvwNkvUpGSsvC1X04uD7V_ypNdC3Y4lBdP9CiNfB0Zu2PF2McaQY_Wp5CFTd-Rf0JIc67bJbbUKMoepkTrcy7loj5JdlAENwPYJDzRbcUeNHO2HDUNbN8my_9vINZUEIFMOlT_254HpVZ8GBiQ\/s16000\/ShinyHunters%20Possibly%20Collaborates%20With%20Scattered%20Spider%20in%20Salesforce%20Attack%20Campaigns.webp?w=1600&resize=1600,900&ssl=1","datePublished":"2025-08-14T08:16:01+00:00","dateModified":"2025-08-14T13:15:23+00:00","description":"ShinyHunters return with Salesforce attacks hitting major firms like Google, using tactics akin to Scattered Spider, sparking collab fears.","breadcrumb":{"@id":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/#primaryimage","url":"https:\/\/i2.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh2m2Ewtt9pCngMYWlhmx6moeCpD82Ngt7Jcfc8bzWL5VvwNkvUpGSsvC1X04uD7V_ypNdC3Y4lBdP9CiNfB0Zu2PF2McaQY_Wp5CFTd-Rf0JIc67bJbbUKMoepkTrcy7loj5JdlAENwPYJDzRbcUeNHO2HDUNbN8my_9vINZUEIFMOlT_254HpVZ8GBiQ\/s16000\/ShinyHunters%20Possibly%20Collaborates%20With%20Scattered%20Spider%20in%20Salesforce%20Attack%20Campaigns.webp?w=1600&resize=1600,900&ssl=1","contentUrl":"https:\/\/i2.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh2m2Ewtt9pCngMYWlhmx6moeCpD82Ngt7Jcfc8bzWL5VvwNkvUpGSsvC1X04uD7V_ypNdC3Y4lBdP9CiNfB0Zu2PF2McaQY_Wp5CFTd-Rf0JIc67bJbbUKMoepkTrcy7loj5JdlAENwPYJDzRbcUeNHO2HDUNbN8my_9vINZUEIFMOlT_254HpVZ8GBiQ\/s16000\/ShinyHunters%20Possibly%20Collaborates%20With%20Scattered%20Spider%20in%20Salesforce%20Attack%20Campaigns.webp?w=1600&resize=1600,900&ssl=1","width":"1600","height":"900"},{"@type":"BreadcrumbList","@id":"https:\/\/cybersecuritynews.com\/shinyhunters-possibly-collaborates-with-scattered-spider\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/cybersecuritynews.com\/"},{"@type":"ListItem","position":2,"name":"ShinyHunters Possibly Collaborates With Scattered Spider in Salesforce Attack Campaigns"}]},{"@type":"WebSite","@id":"https:\/\/cybersecuritynews.com\/#website","url":"https:\/\/cybersecuritynews.com\/","name":"Cyber Security News","description":"World's #1 Premier Cybersecurity and Hacking News Portal","publisher":{"@id":"https:\/\/cybersecuritynews.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/cybersecuritynews.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/cybersecuritynews.com\/#organization","name":"Cyber Security News","url":"https:\/\/cybersecuritynews.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/logo\/image\/","url":"https:\/\/cybersecuritynews.com\/wp-content\/uploads\/2021\/06\/Cyber-security.jpg","contentUrl":"https:\/\/cybersecuritynews.com\/wp-content\/uploads\/2021\/06\/Cyber-security.jpg","width":200,"height":200,"caption":"Cyber Security News"},"image":{"@id":"https:\/\/cybersecuritynews.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Hackingtutorialsandnews","https:\/\/x.com\/The_Cyber_News","https:\/\/www.linkedin.com\/company\/cybersecurity-news\/"]},{"@type":"Person","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/7eb7d8d026aa5dd566f134d4def5c05c","name":"Tushar Subhra Dutta","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/f8bc0247220c7d4dea6c8b5a77d910613305ead17b13c2a7920b400435a848dd?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f8bc0247220c7d4dea6c8b5a77d910613305ead17b13c2a7920b400435a848dd?s=96&d=mm&r=g","caption":"Tushar Subhra Dutta"},"description":"Tushar is a senior cybersecurity and breach reporter. He specializes in covering cybersecurity news, trends, and emerging threats, data breaches, and malware attacks. With years of experience, he brings clarity and depth to complex security topics.","url":"https:\/\/cybersecuritynews.com\/author\/tushar\/"}]}},"jetpack_featured_media_url":"https:\/\/i2.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEh2m2Ewtt9pCngMYWlhmx6moeCpD82Ngt7Jcfc8bzWL5VvwNkvUpGSsvC1X04uD7V_ypNdC3Y4lBdP9CiNfB0Zu2PF2McaQY_Wp5CFTd-Rf0JIc67bJbbUKMoepkTrcy7loj5JdlAENwPYJDzRbcUeNHO2HDUNbN8my_9vINZUEIFMOlT_254HpVZ8GBiQ\/s16000\/ShinyHunters%20Possibly%20Collaborates%20With%20Scattered%20Spider%20in%20Salesforce%20Attack%20Campaigns.webp?w=1600&resize=1600,900&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/121265","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/comments?post=121265"}],"version-history":[{"count":3,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/121265\/revisions"}],"predecessor-version":[{"id":121636,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/121265\/revisions\/121636"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/media\/121357"}],"wp:attachment":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/media?parent=121265"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/categories?post=121265"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/tags?post=121265"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}