Workday has disclosed a data breach following a social engineering attack that compromised a third-party CRM platform, exposing business contact information but not customer tenant data. The incident is believed to be part of a broader wave of attacks linked to the ShinyHunters extortion group, which has targeted multiple high-profile companies through similar tactics.