Salesforce.com has admitted that its customer database has been breached after a member of its staff fell for a phishing scam.
"A Salesforce.com employee had been the victim of a phishing scam that allowed a customer contact list to be copied," said a letter from the company.
Salesforce.com, which has almost one million subscribers, admitted that the stolen data included first and last names, company names, email addresses, telephone numbers and related admin data.
The letter told customers to be aware that they were likely to be targeted by further attacks, including viruses and key-logging software, and asked them to be vigilant against bogus invoices that appear to come from the company.
"Unfortunately, one of the company's employees appears to have fallen for the phishing emails and inadvertently handed over access to the firm's customer database," said Geoff Sweeney, chief technology officer at behavioural analysis company Tier-3.
"As if that wasn't bad enough, Salesforce.com has reportedly tracked a second wave of forged emails that contain malware.
"The fact that the emails are addressed to specific customers and purport to come from Salesforce.com means that the chances of a customer's PC being infected are quite high."
Latest Tesla news: Tesla share price continues to fall after Saudi Arabia's sovereign wealth fund is linked to investment in rival
SEC 'probe' takes its toll on Tesla as new research suggests that Tesla loses $6,000 on every $35,000 Model 3
RTX 280 Ti will come with 11GB of fast GDDR6 video RAM with a 352-bit memory bus offering 616Gbps
The scale of jobs lost to automation will be at least as large as those in the first three industrial revolutions
10nm Cannon Lake Core i3-8121U CPUs make a rare outing with Intel's NUC mini PC