Klue breach lead to Salesforce data theft, Huntress affected 2026-06-19 at 15:57 By Zeljka Zorz Cybersecurity vendor Huntress was among multiple companies hit by a breach originating at Klue, a market intelligence platform used to integrate CRM and sales data across various business tools. Huntress published a detailed account of the incident on June 18, […]
Klue breach lead to Salesforce data theft, Huntress affected Read More »
7-Eleven Data Breach Confirmed After ShinyHunters Ransom Demand 2026-05-18 at 15:10 By Eduard Kovacs The hackers claimed to have stolen more than 600,000 Salesforce records, including personal information and corporate data. The post 7-Eleven Data Breach Confirmed After ShinyHunters Ransom Demand appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
7-Eleven Data Breach Confirmed After ShinyHunters Ransom Demand Read More »
ShinyHunters claims new campaign targeting Salesforce Experience Cloud sites 2026-03-11 at 20:28 By Zeljka Zorz Salesforce customers have, once again, been targeted by the ShinyHunters group – or, at least, it’s what the group claims. Attackers modified and abused benign tool On Saturday, Saleforce confirmed that its security team has identified an attack campaign by
ShinyHunters claims new campaign targeting Salesforce Experience Cloud sites Read More »
Hundreds of Salesforce Customers Allegedly Targeted in New Data Theft Campaign 2026-03-10 at 15:06 By Eduard Kovacs Salesforce has confirmed that customers are being targeted via poorly secured instances. The post Hundreds of Salesforce Customers Allegedly Targeted in New Data Theft Campaign appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
Hundreds of Salesforce Customers Allegedly Targeted in New Data Theft Campaign Read More »
AuraInspector: Open-source tool to audit Salesforce Aura access control misconfigurations 2026-01-13 at 17:45 By Anamarija Pogorelec Google and its Mandiant threat intelligence unit have released AuraInspector, an open-source tool aimed at auditing data access paths in Salesforce Experience Cloud applications. The tool focuses on the Aura framework, which underpins many Salesforce user interfaces and plays
Gainsight breach: Salesforce details attack window, issues investigation guidance 2025-11-26 at 16:30 By Zeljka Zorz The number of Salesforce customers affected by the recent compromise of Gainsight-published applications is yet to be publicly confirmed, but Salesforce released indicators of compromise (IoCs) and simultaneously shed some light on when the attack likely started. The provided list
Gainsight breach: Salesforce details attack window, issues investigation guidance Read More »
Salesforce Gainsight compromise: Early findings and customer guidance 2025-11-21 at 14:16 By Zeljka Zorz In the wake of Salesforce’s announcement about “unusual activity involving Gainsight-published applications” and the company’s revocation of access and refresh tokens associated with them, Gainsight has been doing a good job keeping customers updated on current investigation findings. On the status
Salesforce Gainsight compromise: Early findings and customer guidance Read More »
Salesforce Instances Hacked via Gainsight Integrations 2025-11-21 at 11:50 By Ionut Arghire The infamous ShinyHunters hackers have targeted customer-managed Gainsight-published applications to steal data from Salesforce instances. The post Salesforce Instances Hacked via Gainsight Integrations appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Salesforce Instances Hacked via Gainsight Integrations Read More »
Salesforce investigates new incident echoing Salesloft Drift compromise 2025-11-20 at 23:14 By Zeljka Zorz In what may be a repeat of the Salesloft Drift supply chain compromise, Salesforce confirmed that they’ve identified unusual activity involving Gainsight-published apps connected to Salesforce. “Our investigation indicates this activity may have enabled unauthorized access to certain customers’ Salesforce data
Salesforce investigates new incident echoing Salesloft Drift compromise Read More »
Hackers launch data leak site to extort 39 victims, or Salesforce 2025-10-06 at 17:44 By Zeljka Zorz Scattered Lapsus$ Hunters launched a data leak site over the weekend, aiming to pressure organizations whose Salesforce databases they have plundered into paying to prevent the stolen data from being released. Screenshot of Scattered Lapsus$ Hunters data leak
Hackers launch data leak site to extort 39 victims, or Salesforce Read More »
Hackers Extorting Salesforce After Stealing Data From Dozens of Customers 2025-10-06 at 15:28 By Ionut Arghire Salesforce says the extortion attempts are related to past or unsubstantiated incidents, and not to fresh intrusions. The post Hackers Extorting Salesforce After Stealing Data From Dozens of Customers appeared first on SecurityWeek. This article is an excerpt from
Hackers Extorting Salesforce After Stealing Data From Dozens of Customers Read More »
Automotive Titan Stellantis Discloses Data Breach 2025-09-23 at 12:30 By Ionut Arghire The company says customer contact information was stolen from a third-party service provider’s platform. The post Automotive Titan Stellantis Discloses Data Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Automotive Titan Stellantis Discloses Data Breach Read More »
FBI Shares IoCs for Recent Salesforce Intrusion Campaigns 2025-09-15 at 16:06 By Ionut Arghire The cybercrime groups tracked as UNC6040 and UNC6395 have been extorting organizations after stealing data from their Salesforce instances. The post FBI Shares IoCs for Recent Salesforce Intrusion Campaigns appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View
FBI Shares IoCs for Recent Salesforce Intrusion Campaigns Read More »
Salesloft GitHub Account Compromised Months Before Salesforce Attack 2025-09-08 at 16:06 By Ionut Arghire The list of impacted cybersecurity firms has been expanded to include BeyondTrust, Bugcrowd, CyberArk, Cato Networks, JFrog, and Rubrik. The post Salesloft GitHub Account Compromised Months Before Salesforce Attack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View
Salesloft GitHub Account Compromised Months Before Salesforce Attack Read More »
Salesloft Drift data breach: Investigation reveals how attackers got in 2025-09-08 at 14:33 By Zeljka Zorz The attack that resulted in the Salesloft Drift data breach started with the compromise of the company’s GitHub account, Salesloft confirmed this weekend. Supply chain compromise On August 26, the company publicly revealed that earlier that month, a threat
Salesloft Drift data breach: Investigation reveals how attackers got in Read More »
More Cybersecurity Firms Hit by Salesforce-Salesloft Drift Breach 2025-09-05 at 11:51 By Ionut Arghire Proofpoint, SpyCloud, Tanium, and Tenable confirmed that hackers accessed information stored in their Salesforce instances. The post More Cybersecurity Firms Hit by Salesforce-Salesloft Drift Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
More Cybersecurity Firms Hit by Salesforce-Salesloft Drift Breach Read More »
Attackers are turning Salesforce trust into their biggest weapon 2025-09-04 at 09:02 By Sinisa Markovic Salesforce has become a major target for attackers in 2025, according to new WithSecure research into threats affecting customer relationship management (CRM) platforms. The report shows that malicious activity inside Salesforce environments rose sharply in the first quarter of this
Attackers are turning Salesforce trust into their biggest weapon Read More »
Cloudflare confirms data breach linked to Salesloft Drift supply chain compromise 2025-09-03 at 16:13 By Zeljka Zorz Cloudflare has also been affected by the Salesloft Drift breach, the US web infrastructure and security company confirmed on Tuesday, and the attackers got their hands on 104 Cloudflare API tokens. “We have identified no suspicious activity associated
Cloudflare confirms data breach linked to Salesloft Drift supply chain compromise Read More »
Security Firms Hit by Salesforce–Salesloft Drift Breach 2025-09-03 at 13:06 By Ionut Arghire Hackers accessed customer contact information and case data from Salesforce instances at Cloudflare, Palo Alto Networks, and Zscaler. The post Security Firms Hit by Salesforce–Salesloft Drift Breach appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Security Firms Hit by Salesforce–Salesloft Drift Breach Read More »
Zscaler, Palo Alto Networks, SpyCloud among the affected by Salesloft breach 2025-09-02 at 18:20 By Zeljka Zorz In the wake of last week’s revelation of a breach at Salesloft by a group tracked by Google as UNC6395, several companies – including Zscaler, Palo Alto Networks, PagerDuty, Tanium, and SpyCloud – have confirmed their Salesforce instances
Zscaler, Palo Alto Networks, SpyCloud among the affected by Salesloft breach Read More »