And they abused a Mandiant-developed open source tool in the attacks ShinyHunters told The Register that it has stolen data from about 100 high-profile companies in its latest Salesforce customer data ...

Modified AuraInspector scans misconfigured Salesforce Experience Cloud sites, extracting CRM data and enabling targeted ...

Salesforce warned users of an uptick in malicious activity targeting Experience Cloud customers with misconfigured user settings via an open source tool.

Salesforce has issued another warning to customers as the notorious ShinyHunters cybercrime group has announced a new ...

​ShinyHunters has a long track record of going after Salesforce customers, having targeted their instances on multiple occasions in connected campaigns last year.

A prolific and noisy cybercrime gang with a penchant for stealing Salesforce customers' data and holding it ransom is taking advantage of misconfigured guest ...

Salesforce says no bugs being exploited, but the hackers claim otherwise.

Some customers have mishandled guest user configurations otherwise intended to allow third-party access to important — and sensitive — client data.

Add Yahoo as a preferred source to see more of our stories on Google. Salesforce logo at its Corporate office in New York, NY.., USA on August 18, 2022. This story was originally published on ...

A fresh cybersecurity threat has arrived involving Salesforce. The hacker group ShinyHunters has claimed to have run a campaign targeting Salesforce environment ...

Salesforce warns that a threat campaign is exploiting overly permissive Experience Cloud guest configurations to harvest data from public portals. Salesforce is urging its customers to review their ...