Modified AuraInspector scans misconfigured Salesforce Experience Cloud sites, extracting CRM data and enabling targeted ...

Salesforce is warning customers that hackers are targeting websites with misconfigured Experience Cloud platforms that give ...

And they abused a Mandiant-developed open source tool in the attacks ShinyHunters told The Register that it has stolen data from about 100 high-profile companies in its latest Salesforce customer data ...

In all the excitement over Google and Facebook, my usually eagle-eyed enterprisey colleagues missed that salesforce.com exposed some of its users to a phishing scam. The Washington Post says that: ...

Salesforce warned users of an uptick in malicious activity targeting Experience Cloud customers with misconfigured user settings via an open source tool.

Salesforce warns that a threat campaign is exploiting overly permissive Experience Cloud guest configurations to harvest data from public portals. Salesforce is urging its customers to review their ...

Salesloft issued a security notification on August 26 regarding its Drift application. It appears to be a broad opportunistic attack on Salesloft/Drift instances integrated with Salesforce tenants.

Clients affected by the Pardot marketing automation software scripting error received System Administrator access Saturday, but still needed to figure out how to ...