Workday is a organization tracked across 11 threat clusters and 11 intelligence report mentions on ThreatCluster. First observed November 17, 2025; most recent activity June 2, 2026.
A financially motivated threat actor known as Storm-2755 is targeting Canadian employees by hijacking their payroll accounts to redirect salary payments to attacker-controlled bank accounts. The attackers employ…
A significant supply chain attack has compromised Salesforce-stored data from more than 200 companies through applications published by Gainsight. Salesforce confirmed unauthorized access to customer data and is…
DoorDash confirmed a data breach that occurred on October 25, 2025, when an employee fell victim to a social engineering scam. The breach exposed personal information including names, email addresses, phone numbers, and…
DoorDash has confirmed a data breach that occurred in October 2025, affecting customers, Dashers, and merchants. The company is investigating the incident and has engaged a cybersecurity forensic firm to enhance its…
Hackers compromised Salesforce-stored data from more than 200 companies through a supply chain attack involving Gainsight applications. Google confirmed the breach, stating that unauthorized access to customer data was…
Cybersecurity researchers have identified malicious Google Chrome extensions that impersonate legitimate business tools, including Workday, NetSuite, and SAP SuccessFactors. These extensions can steal login credentials…
Five malicious Chrome extensions have been identified as a coordinated threat to enterprise HR and ERP platforms, specifically targeting Workday, NetSuite, and SuccessFactors. These extensions facilitate account…
LayerX has uncovered a significant cybersecurity threat linked to the GhostPoster browser extension. Koi Security's analysis revealed that malicious code was hidden within PNG image files, enabling the extension to…
CrowdStrike has confirmed the termination of a suspicious insider who shared internal screenshots with a hacking group. The incident did not result in a breach of the company's systems or compromise customer data,…
In December 2025, fraudsters executed a simple attack that involved a help-desk call to redirect a physician's salary into their own account. This incident, investigated by Binary Defense's ARC Labs, highlights…