And they abused a Mandiant-developed open source tool in the attacks ShinyHunters told The Register that it has stolen data from about 100 high-profile companies in its latest Salesforce customer data ...

​ShinyHunters has a long track record of going after Salesforce customers, having targeted their instances on multiple occasions in connected campaigns last year.

Modified AuraInspector scans misconfigured Salesforce Experience Cloud sites, extracting CRM data and enabling targeted vishing campaigns.

Some customers have mishandled guest user configurations otherwise intended to allow third-party access to important — and sensitive — client data.

Salesforce has warned users of an uptick in threat actor activity targeting Experience Cloud customers’ who have accidentally enabling overly permissive guest user configurations. Salesforce stressed ...

Salesforce has issued another warning to customers as the notorious ShinyHunters cybercrime group has announced a new ...

The Arovy Data Dictionary now features Bulk AI Documentation and a new API, helping teams turn Salesforce metadata into a trusted foundation for analytics, automation, and AI.

Salesforce is warning customers that hackers are targeting websites with misconfigured Experience Cloud platforms that give ...

Salesforce warns that a threat campaign is exploiting overly permissive Experience Cloud guest configurations to harvest data from public portals. Salesforce is urging its customers to review their ...