Threat Intelligence Report

Cybercrime Observations from the Frontlines: UNC6040 Proactive Hardening Recommendations | Google Cloud Blog

📅 October 1, 2025 📰 cloud.google.com 🔍 1 CVE(s) referenced

UNC6040 is a financially motivated threat group that uses highly convincing vishing attacks to trick employees into authorizing malicious Salesforce connected apps, enabling rapid data theft and extortion—making robust identity verification, SaaS hardening, and advanced detection essential for defense.

vendor

CVE-2025-53690

🔐 Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

📊 Visual Mindmap

🎯 IOC Extraction

⚔️ MITRE ATT&CK TTPs

📦 STIX 2.1 Bundle