Members of a financially motivated threat group are impersonating IT support staff in convincing phone calls and talking employees into granting access to their organization’s Salesforce environments.

In an active campaign, a financially motivated threat actor is voice phishing (Vishing) Salesforce customers to compromise their organizational data and carry out subsequent extortion. Tracked as ...

Add articles to your saved list and come back to them any time. Cloud software giant Salesforce has defended its security practices days after hackers published data from about 5.7 million Qantas ...

The attacks linked to a threat group known as ShinyHunters have now compromised Google in addition to numerous other major companies. A wave of data-theft attacks against Salesforce CRM customers has ...

Google has confirmed a data breach involving one of its Salesforce databases, compromised in June 2025 by the hacking group ShinyHunters, also known as UNC6040. The breach was part of a wider voice ...

For businesses already leveraging Salesforce, data is the lifeblood. It fuels customer relationships, drives sales techniques and informs critical decision making. However, as businesses evolve, merge ...

A campaign of cyber attacks orchestrated via social engineering against users’ Salesforce instances is now being attributed to the ShinyHunters cyber crime gang with growing confidence, and the list ...

[WASHINGTON] Salesforce said on Thursday (Nov 20) that it is investigating “unusual activity” involving Gainsight-published applications that may have exposed customer data. In a brief statement ...

In a notice published on its status portal, Salesforce said the Gainsight-published apps, which are installed and managed directly by customers, may have enabled unauthorized access to certain ...