Salesforce.com has admitted that its customer database has been breached after a member of its staff fell for a phishing scam.
"A Salesforce.com employee had been the victim of a phishing scam that allowed a customer contact list to be copied," said a letter from the company.
Salesforce.com, which has almost one million subscribers, admitted that the stolen data included first and last names, company names, email addresses, telephone numbers and related admin data.
The letter told customers to be aware that they were likely to be targeted by further attacks, including viruses and key-logging software, and asked them to be vigilant against bogus invoices that appear to come from the company.
"Unfortunately, one of the company's employees appears to have fallen for the phishing emails and inadvertently handed over access to the firm's customer database," said Geoff Sweeney, chief technology officer at behavioural analysis company Tier-3.
"As if that wasn't bad enough, Salesforce.com has reportedly tracked a second wave of forged emails that contain malware.
"The fact that the emails are addressed to specific customers and purport to come from Salesforce.com means that the chances of a customer's PC being infected are quite high."
Cotton seedling freezes to death as Chang'e-4 shuts down for the Moon's 14-day lunar night
Fortnite easily out-earns PUBG, Assassin's Creed Odyssey and Red Dead Redemption 2 in 2018
Meteor showers as a service will be visible for about 100 kilometres in all directions
Saturn's rings only formed in the past 100 million years, suggests analysis of Cassini space probe data
New findings contradict conventional belief that Saturn's rings were formed along with the planet about 4.5 billion years ago