Salesforce platforms are being cracked open for data theft - FBI warns of UNC6040 and UNC6395 IOCs

The FBI labeled this group as UNC6395 and apparently, it struck some of the biggest tech and security organizations, ...
Hosted on MSN

Hackers steal Cloudflare customer data after exploiting Salesforce chatbot connection

Cloudflare has confirmed that hackers managed to break into its Salesforce system and steal customer data. The company explained that this attack was part of a much larger supply chain hack that ...
Bleeping Computer

Google: Hackers target Salesforce accounts in data extortion attacks

Google has observed hackers claiming to be the ShinyHunters extortion group conducting social engineering attacks against multi-national companies to steal data from organizations' Salesforce ...
CSOonline

Hackers use Vishing to breach Salesforce customers and swipe data

In an active campaign, a financially motivated threat actor is voice phishing (Vishing) Salesforce customers to compromise their organizational data and carry out subsequent extortion. Tracked as ...
Infosecurity-magazine.com

New Data Theft Campaign Targets Salesforce via Salesloft App

Salesforce customers have again been targeted in a “widespread data theft campaign,” this time via compromised OAuth tokens associated with the third-party Salesloft Drift application. Salesloft Drift ...
Computerworld

Salesforce changes Slack API terms to block bulk data access for LLMs

Salesforce’s Slack platform has changed its API terms of service to stop organizations from using Large Language Models (LLMs) to ingest the platform’s data as ...