Recently, dozens of companies confirmed that they were impacted by a large-scale data breach at Salesforce. While notices vary by company, the incident resulted in an unauthorized party being able to ...

Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in widespread Salesforce data theft attacks in August. Salesloft is a widely ...

A wave of data breaches impacting companies like Qantas, Allianz Life, LVMH, and Adidas has been linked to the ShinyHunters extortion group, which has been using voice phishing attacks to steal data ...

The attacks linked to a threat group known as ShinyHunters have now compromised Google in addition to numerous other major companies. A wave of data-theft attacks against Salesforce CRM customers has ...

Hackers claim theft of 1 billion records from Salesforce databases. Major firms like Google, Qantas, and TransUnion confirm breaches. FBI says attackers used vishing, not Salesforce vulnerabilities. A ...

Salesforce customers have again been targeted in a “widespread data theft campaign,” this time via compromised OAuth tokens associated with the third-party Salesloft Drift application. Salesloft Drift ...

Members of a financially motivated threat group are impersonating IT support staff in convincing phone calls and talking employees into granting access to their organization’s Salesforce environments.

McGraw-Hill confirms a data exposure tied to a Salesforce misconfiguration as hackers claim 45M records, raising concerns over SaaS security risks. McGraw-Hill has confirmed unauthorized access to a ...

One aspect of the "AI revolution" keeping security professionals up at night is the continued prevalence of prompt injection attacks that enable exfiltration of sensitive data — even against dominant ...