Workday Discloses Data Breach from Social Engineering Attack Involving Names, Emails, and Business Contact Information

Workday Inc., a leading human resources software provider, disclosed a data breach resulting from a social engineering attack that compromised an unspecified amount of personal data, including names and email addresses. The breach involved one of Workday's third-party customer relationship management (CRM) platforms. While the company has downplayed the overall impact of the incident, it confirmed that hackers accessed limited business contact information. The breach comes amid a broader context of cybersecurity threats targeting enterprise software, including recent attacks on platforms like Salesforce. Industry experts highlight the increasing challenges enterprises face due to the rapid pace of exploits and delayed patching, exacerbated by accelerated software development driven by AI technologies.