- Pandora informed his clients of a data violation
- Hackers stole people’s names and e -mail addresses
- Unconfirmed reports named Shinyhunters as perpetrators
Jewelry Powerhouse Pandora has confirmed the suffering of a cyberattack that saw the losing sensitive customer information.
The company revealed the news in a notification of data violation sent to affected customers who said: “We are writing to inform you that Pandora has experienced a cyber security attack that accessed some customer information via a third -party platform we use.
“We will reassure you that the attack has stopped and as a result we have further strengthened our security measures.”
Shinyhunters
Pandora emphasized that “only very common types of” data were Exfiltered -Names and E -Mail addresses. Passwords, credit card information and similar confidential data were not taken.
The company also said that its study determined that the data has not yet been abused, but that they recommend that users remain vigilant and keep track of unsolicited E -Mail messages or online interactions asking for their data.
“That’s why we recommend that you not click on links or download attachments from unknown sources,” it said.
The company did not say who the threat actors were, how they managed to access Pandora’s network or how many people were affected by this incident.
However Bleeping computer Claims that the attack was likely to work for Shinyhunters who broke into Pandora’s Salesforce database.
According to the publication, Shinyhunters have been looking for a way into Corporate Salesforce databases since January 2025 and has used various social technical and phishing tactics.
Apparently they worked, and Shinyhunters now say they want to “perform a mass sale or leakage” of companies that refuse to pay ransom.
Salesforce, on the other hand, confirmed that its solutions were not compromised.
“Salesforce is not compromised and the problems described are not due to any known vulnerability in our platform. While Salesforce is building company degree safety for everything we do, customers also play a critical role in keeping their data safe-icing in the midst of an increase in sophisticated phishing and social technical attacks,” Salesforce told the publication.
