Home
News
Tech Grid
Data & Analytics
Data Processing Data Management Analytics Data Infrastructure Data Integration & ETL Data Governance & Quality Business Intelligence DataOps Data Lakes & Warehouses Data Quality Data Engineering Big Data
Enterprise Tech
Digital Transformation Enterprise Solutions Collaboration & Communication Low-Code/No-Code Automation IT Compliance & Governance Innovation Enterprise AI Data Management HR
Cybersecurity
Risk & Compliance Data Security Identity & Access Management Application Security Threat Detection & Incident Response Threat Intelligence AI Cloud Security Network Security Endpoint Security Edge AI
AI
Ethical AI Agentic AI Enterprise AI AI Assistants Innovation Generative AI Computer Vision Deep Learning Machine Learning Robotics & Automation LLMs Document Intelligence Business Intelligence Low-Code/No-Code Edge AI Automation NLP AI Cloud
Cloud
Cloud AI Cloud Migration Cloud Security Cloud Native Hybrid & Multicloud Cloud Architecture Edge Computing
IT & Networking
IT Automation Network Monitoring & Management IT Support & Service Management IT Infrastructure & Ops IT Compliance & Governance Hardware & Devices Virtualization End-User Computing Storage & Backup
Human Resource Technology Agentic AI Robotics & Automation Innovation Enterprise AI AI Assistants Enterprise Solutions Generative AI Regulatory & Compliance Network Security Collaboration & Communication Business Intelligence Leadership Artificial Intelligence Cloud
Finance
Insurance Investment Banking Financial Services Security Payments & Wallets Decentralized Finance Blockchain Cryptocurrency
HR
Talent Acquisition Workforce Management AI HCM HR Cloud Learning & Development Payroll & Benefits HR Analytics HR Automation Employee Experience Employee Wellness
Marketing
AI Customer Engagement Advertising Email Marketing CRM Customer Experience Data Management Sales Content Management Marketing Automation Digital Marketing Supply Chain Management Communications Business Intelligence Digital Experience SEO/SEM Digital Transformation Marketing Cloud Content Marketing E-commerce
Consumer Tech
Smart Home Technology Home Appliances Consumer Health AI
Interviews
Think Stack
Collab IQ Event Coverage Guest Articles
Press Releases
Articles
Featured Tech Drops
Resources
  • Home
  • /
  • Tech Drops
  • /
  • Workday Confirms Data Breach Amid Wider Salesforce Attacks

Workday Confirms Data Breach Amid Wider Salesforce Attacks

  • August 20, 2025
  • CyberSecurity
Arko Chandra
Workday Confirms Data Breach Amid Wider Salesforce Attacks

Workday, the HR technology giant, has confirmed a data breach that gave hackers access to personal information stored in one of its third-party CRM databases.

The type of information that threat actors got their hands on was “primarily commonly available business contact information, like names, email addresses, and phone numbers, potentially to further their social engineering scams,” writes a Workday blog post published Friday. The company further added that “there is no indication of access to customer tenants or the data within them.”

The hack follows attacks on Salesforce instances

The Workday breach follows a string of recent attacks on Salesforce-hosted databases executed by ShinyHunters. Google, Qantas, Cisco, and Pandora have all fallen victim to data theft from their Salesforce platforms.

Attributing its Salesforce breaches to ShinyHunters, Google said that the hacker group may be preparing a data leak site to extort victims into paying them to delete the data.

Although Workday did not confirm the compromised third-party database, the attack is likely another instance of the long-running campaign targeting major organizations. Regarding post-breach countermeasures, Workday said, “We acted quickly to cut the access and have added extra safeguards to protect against similar incidents in the future.”

Who the data relates to remains unclear

Serving over 11,000 corporate customers and around 70 million users globally, Workday reportedly discovered the breach earlier this month. The company did not disclose whether the stolen data belonged to its employees or customers, nor did it mention the number of individuals whose data was compromised.

The human resources firm clarified its communications procedure, saying, “It’s important to remember that Workday will never contact anyone by phone to request a password or any other secure details. All official communications from Workday come through our trusted support channels.”

Join 15,000+ Avid Tech Readers!

Trending tech news, interviews & insights straight to your inbox.