Salesforce

Salesloft GitHub Account Compromised Months Before Salesforce Attack

Data Breaches, Featured, Salesforce, Salesloft, UNC6395 /

Salesloft GitHub Account Compromised Months Before Salesforce Attack 2025-09-08 at 16:06 By Ionut Arghire The list of impacted cybersecurity firms has been expanded to include BeyondTrust, Bugcrowd, CyberArk, Cato Networks, JFrog, and Rubrik. The post Salesloft GitHub Account Compromised Months Before Salesforce Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View […]

React to this headline:

Loading spinner

Salesloft GitHub Account Compromised Months Before Salesforce Attack Read More »

Salesloft Drift data breach: Investigation reveals how attackers got in

credentials, data theft, Don't miss, Hot stuff, Mandiant, News, Salesforce, Salesloft, supply chain compromise /

Salesloft Drift data breach: Investigation reveals how attackers got in 2025-09-08 at 14:33 By Zeljka Zorz The attack that resulted in the Salesloft Drift data breach started with the compromise of the company’s GitHub account, Salesloft confirmed this weekend. Supply chain compromise On August 26, the company publicly revealed that earlier that month, a threat

React to this headline:

Loading spinner

Salesloft Drift data breach: Investigation reveals how attackers got in Read More »

More Cybersecurity Firms Hit by Salesforce-Salesloft Drift Breach

Data Breaches, Featured, Salesforce, Salesloft, security company hacked /

More Cybersecurity Firms Hit by Salesforce-Salesloft Drift Breach 2025-09-05 at 11:51 By Ionut Arghire Proofpoint, SpyCloud, Tanium, and Tenable confirmed that hackers accessed information stored in their Salesforce instances. The post More Cybersecurity Firms Hit by Salesforce-Salesloft Drift Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Loading spinner

More Cybersecurity Firms Hit by Salesforce-Salesloft Drift Breach Read More »

Attackers are turning Salesforce trust into their biggest weapon

cybersecurity, Don't miss, News, OAuth, report, Salesforce, survey, threats, WithSecure /

Attackers are turning Salesforce trust into their biggest weapon 2025-09-04 at 09:02 By Sinisa Markovic Salesforce has become a major target for attackers in 2025, according to new WithSecure research into threats affecting customer relationship management (CRM) platforms. The report shows that malicious activity inside Salesforce environments rose sharply in the first quarter of this

React to this headline:

Loading spinner

Attackers are turning Salesforce trust into their biggest weapon Read More »

Cloudflare confirms data breach linked to Salesloft Drift supply chain compromise

Cloudflare, credentials, data breach, Don't miss, Hot stuff, News, OAuth, Proofpoint, Rubrik, SaaS, Salesforce, supply chain compromise /

Cloudflare confirms data breach linked to Salesloft Drift supply chain compromise 2025-09-03 at 16:13 By Zeljka Zorz Cloudflare has also been affected by the Salesloft Drift breach, the US web infrastructure and security company confirmed on Tuesday, and the attackers got their hands on 104 Cloudflare API tokens. “We have identified no suspicious activity associated

React to this headline:

Loading spinner

Cloudflare confirms data breach linked to Salesloft Drift supply chain compromise Read More »

Security Firms Hit by Salesforce–Salesloft Drift Breach

Data Breaches, Incident Response, Salesforce, Salesloft /

Security Firms Hit by Salesforce–Salesloft Drift Breach 2025-09-03 at 13:06 By Ionut Arghire Hackers accessed customer contact information and case data from Salesforce instances at Cloudflare, Palo Alto Networks, and Zscaler. The post Security Firms Hit by Salesforce–Salesloft Drift Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React

React to this headline:

Loading spinner

Security Firms Hit by Salesforce–Salesloft Drift Breach Read More »

Zscaler, Palo Alto Networks, SpyCloud among the affected by Salesloft breach

Astrix Security, data breach, Don't miss, Gmail, Google, Hot stuff, Mandiant, News, OAuth, PagerDuty, Palo Alto Networks, Salesforce, SpyCloud, Tanium, WideField, Zscaler /

Zscaler, Palo Alto Networks, SpyCloud among the affected by Salesloft breach 2025-09-02 at 18:20 By Zeljka Zorz In the wake of last week’s revelation of a breach at Salesloft by a group tracked by Google as UNC6395, several companies – including Zscaler, Palo Alto Networks, PagerDuty, Tanium, and SpyCloud – have confirmed their Salesforce instances

React to this headline:

Loading spinner

Zscaler, Palo Alto Networks, SpyCloud among the affected by Salesloft breach Read More »

Hundreds of Salesforce Customers Hit by Widespread Data Theft Campaign

Data Breaches, Salesforce, UNC6395 /

Hundreds of Salesforce Customers Hit by Widespread Data Theft Campaign 2025-08-27 at 19:31 By Ionut Arghire Google says the hackers systematically exported corporate data, focusing on secrets such as AWS and Snowflake keys. The post Hundreds of Salesforce Customers Hit by Widespread Data Theft Campaign appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Loading spinner

Hundreds of Salesforce Customers Hit by Widespread Data Theft Campaign Read More »

Hundreds of Salesforce customer orgs hit in clever attack with potentially huge blast radius

AppOmni, cloud security, credentials, data theft, Don't miss, Google, Hot stuff, News, OAuth, Salesforce, third party compromise /

Hundreds of Salesforce customer orgs hit in clever attack with potentially huge blast radius 2025-08-27 at 17:47 By Zeljka Zorz A threat group Google tracks as UNC6395 has pilfered troves of data from Salesforce corporate instances, in search of credentials that can be used to compromise those organizations’ environments. “[Google Threat Intelligence Group] observed UNC6395

React to this headline:

Loading spinner

Hundreds of Salesforce customer orgs hit in clever attack with potentially huge blast radius Read More »

Google Discloses Salesforce Hack 

data breach, Data Breaches, Google, Salesforce, Scattered Spider, ShinyHunters /

Google Discloses Salesforce Hack  2025-08-06 at 20:34 By Eduard Kovacs A Google Salesforce instance may have been targeted as part of a ShinyHunters campaign that hit several major companies.  The post Google Discloses Salesforce Hack  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to this headline:

React to this headline:

Loading spinner

Google Discloses Salesforce Hack  Read More »

Concentric AI enhances data security with new platform integrations

Concentric AI, GitHub, Industry news, Salesforce, Wiz /

Concentric AI enhances data security with new platform integrations 2025-08-06 at 09:44 By Industry News Concentric AI announced new integrations that enhance the AI-driven capabilities of its Semantic Intelligence data security governance platform, expanding data governance functionality for organizations. Concentric AI’s new integration with Wiz, gives Wiz customers unique contextual insights into their cloud data

React to this headline:

Loading spinner

Concentric AI enhances data security with new platform integrations Read More »

Five Zero-Days, 15 Misconfigurations Found in Salesforce Industry Cloud

Application Security, Cloud, cloud security, Salesforce, Vulnerabilities /

Five Zero-Days, 15 Misconfigurations Found in Salesforce Industry Cloud 2025-06-10 at 15:03 By Kevin Townsend Security researchers uncover critical flaws and widespread misconfigurations in Salesforce’s industry-specific CRM solutions. The post Five Zero-Days, 15 Misconfigurations Found in Salesforce Industry Cloud appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source React to

React to this headline:

Loading spinner

Five Zero-Days, 15 Misconfigurations Found in Salesforce Industry Cloud Read More »

Attackers fake IT support calls to steal Salesforce data

data theft, Don't miss, enterprise, extortion, Google, Hot stuff, News, Salesforce, social engineering, vishing /

Attackers fake IT support calls to steal Salesforce data 2025-06-04 at 17:47 By Zeljka Zorz Over the past several months, a threat group has been actively breaching organizations’ Salesforce instances and exfiltrating customer and business data, Google Threat Intelligence Group (GTIG) has warned. The attackers in question – currently tracked as UNC6040 – are masters

React to this headline:

Loading spinner

Attackers fake IT support calls to steal Salesforce data Read More »

Inside the strategy of Salesforce’s new Chief Trust Officer

Artificial Intelligence, Compliance, cybersecurity, data security, Don't miss, Features, Hot stuff, News, opinion, Privacy, Salesforce, strategy /

Inside the strategy of Salesforce’s new Chief Trust Officer 2024-02-19 at 07:32 By Mirko Zorz Recently, Salesforce named Brad Arkin, previously Chief Security & Trust Officer at Cisco, the company’s new Chief Trust Officer. This was the perfect opportunity to find out more about his plans. In this Help Net Security interview, Arkin discusses a

React to this headline:

Loading spinner

Inside the strategy of Salesforce’s new Chief Trust Officer Read More »

Veeam Backup for Salesforce v2 protects against data loss and corruption

Industry news, Salesforce, Veeam Software /

Veeam Backup for Salesforce v2 protects against data loss and corruption 15/11/2023 at 16:03 By Industry News Veeam Software has launched Veeam Backup for Salesforce v2, available on Salesforce AppExchange. Veeam Backup for Salesforce eliminates the risks of Salesforce data and metadata loss from human, integration, and corruption errors. This newest version from Veeam extends

React to this headline:

Loading spinner

Veeam Backup for Salesforce v2 protects against data loss and corruption Read More »

Salesforce and Google join forces to drive productivity with AI

Google, Industry news, Salesforce /

Salesforce and Google join forces to drive productivity with AI 13/09/2023 at 16:34 By Industry News Salesforce and Google have expanded their strategic partnership to bring together Salesforce and Google Workspace to drive productivity with AI. This partnership will deliver new bidirectional integrations that allow customers to bring together context from Salesforce and Google Workspace,

React to this headline:

Loading spinner

Salesforce and Google join forces to drive productivity with AI Read More »

Consumer surveys show a growing distrust of AI and firms that use it

AI, Artificial Intelligence, chatbot, ChatGPT, Salesforce, survey, use /

Consumer surveys show a growing distrust of AI and firms that use it 29/08/2023 at 09:02 By Cointelegraph By Jesse Coghlan A global consumer survey from Salesforce shows a growing distrust toward firms that use AI, while an Australian survey found most believe it creates more problems than it solves. This article is an excerpt

React to this headline:

Loading spinner

Consumer surveys show a growing distrust of AI and firms that use it Read More »

Salesforce Email Service Zero-Day Exploited in Phishing Campaign

email security, Featured, phishing, Salesforce /

Salesforce Email Service Zero-Day Exploited in Phishing Campaign 03/08/2023 at 12:47 By Eduard Kovacs Threat actors have exploited a Salesforce email service zero-day vulnerability and abused Meta features in a sophisticated phishing campaign. The post Salesforce Email Service Zero-Day Exploited in Phishing Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

React to this headline:

Loading spinner

Salesforce Email Service Zero-Day Exploited in Phishing Campaign Read More »

Salesforce and Meta suffer phishing campaign that evades typical detection methods

0-day, cybercrime, cybersecurity, email security, Facebook, Guardio, News, phishing, Salesforce, vulnerability /

Salesforce and Meta suffer phishing campaign that evades typical detection methods 02/08/2023 at 17:18 By Help Net Security The Guardio research team discovered an email phishing campaign exploiting a zero-day vulnerability in Salesforce’s legitimate email services and SMTP servers. Phishing email sample as was sent from the “@salesforce.com” email address The vulnerability allowed threat actors

React to this headline:

Loading spinner

Salesforce and Meta suffer phishing campaign that evades typical detection methods Read More »

Organizations Warned of Salesforce ‘Ghost Sites’ Exposing Sensitive Information

cloud security, Data Protection, Salesforce /

Organizations Warned of Salesforce ‘Ghost Sites’ Exposing Sensitive Information 01/06/2023 at 13:47 By Eduard Kovacs Salesforce ghost sites — domains that are no longer maintained but still accessible — can expose personal information and business data. The post Organizations Warned of Salesforce ‘Ghost Sites’ Exposing Sensitive Information appeared first on SecurityWeek. This article is an

React to this headline:

Loading spinner

Organizations Warned of Salesforce ‘Ghost Sites’ Exposing Sensitive Information Read More »

Scroll to Top