Salesforce is warning customers that hackers are targeting websites with misconfigured Experience Cloud platforms that give ...

Salesforce has issued another warning to customers as the notorious ShinyHunters cybercrime group has announced a new ...

Salesforce says no bugs being exploited, but the hackers claim otherwise.

Modified AuraInspector scans misconfigured Salesforce Experience Cloud sites, extracting CRM data and enabling targeted ...

And they abused a Mandiant-developed open source tool in the attacks ShinyHunters told The Register that it has stolen data from about 100 high-profile companies in its latest Salesforce customer data ...

​ShinyHunters has a long track record of going after Salesforce customers, having targeted their instances on multiple occasions in connected campaigns last year.

Some customers have mishandled guest user configurations otherwise intended to allow third-party access to important — and sensitive — client data.

Hackers claiming to have accessed and stolen nearly 1 billion Salesforce records set up a site on the dark web late last week, demanding a ransom from 39 companies and Salesforce itself before ...

The attacks linked to a threat group known as ShinyHunters have now compromised Google in addition to numerous other major companies. A wave of data-theft attacks against Salesforce CRM customers has ...

Recently, dozens of companies confirmed that they were impacted by a large-scale data breach at Salesforce. While notices vary by company, the incident resulted in an unauthorized party being able to ...

Salesforce failed to address the massive wave of OAuth breaches at its Dreamforce conference, but securing third-party authentication is paramount for the agentic future it seeks. Salesforce’s 2025 ...