SecurityWeek

Salesforce AI Hack Enabled CRM Data Theft

Prompt injection has been leveraged alongside an expired domain to steal Salesforce data in an attack named ForcedLeak.
Security Boulevard

Salesforce Faces Lawsuits Over Compromises of Third-Party Apps: Report

Salesforce is facing a possible class action lawsuit from almost two dozen plaintiffs who say the SaaS giant should have had better security around its platform, even though a spate of high-profile ...

FBI issues FLASH advisory on Salesforce breaches linked to cybercriminal groups UNC6040, UNC6395

"The Federal Bureau of Investigation (FBI) is releasing this FLASH to disseminate Indicators of Compromise (IOCs) associated ...
Scoop

UNC6040 Hacks Salesforce Via Vishing And Malicious Data Loader Apps, Google Warns

A new Google Cloud Threat Intelligence report has revealed a sophisticated vishing campaign targeting Salesforce environments, enabling large-scale data theft and extortion. The operation, attributed ...
TechRadar

Fake IT support voice calls lead to cyber extortion and stolen company data

Google experts warning of ongoing vishing campaign Threat actors impersonate IT support and trick people into downloading malware They use fake Salesforce apps to steal data Around 20 companies lost ...
GovInfoSecurity

Salesforce Patches CRM Data Exfiltration Vulnerability

Salesforce has patched a vulnerability involving its Agentforce agentic artificial intelligence tool, discovered by ...
Forbes

Navigating The Data Highway: A Guide To Salesforce Data Migration

Expertise from Forbes Councils members, operated under license. Opinions expressed are those of the author. For businesses already leveraging Salesforce, data is the lifeblood. It fuels customer ...