FBI warns of UNC6040, UNC6395 hackers stealing Salesforce data

The FBI has issued a FLASH alert warning that two threat clusters, tracked as UNC6040 and UNC6395, are compromising ...
SecurityWeek

FBI Shares IoCs for Recent Salesforce Intrusion Campaigns

The cybercrime groups tracked as UNC6040 and UNC6395 have been extorting organizations after stealing data from their ...

FBI issues FLASH advisory on Salesforce breaches linked to cybercriminal groups UNC6040, UNC6395

"The Federal Bureau of Investigation (FBI) is releasing this FLASH to disseminate Indicators of Compromise (IOCs) associated ...
Security Boulevard

Salesforce Faces Lawsuits Over Compromises of Third-Party Apps: Report

Salesforce is facing a possible class action lawsuit from almost two dozen plaintiffs who say the SaaS giant should have had better security around its platform, even though a spate of high-profile ...
The Hacker News

Salesforce Patches Critical ForcedLeak Bug Exposing CRM Data via AI Prompt Injection

ForcedLeak flaw in Salesforce Agentforce allows data exfiltration via indirect prompt injection; Salesforce issues patch.
CRN

5 Things To Know On Salesforce Data Theft Attacks

The attacks linked to a threat group known as ShinyHunters have now compromised Google in addition to numerous other major companies. A wave of data-theft attacks against Salesforce CRM customers has ...
CSO Online

Vulnerability in Salesforce AI could be tricked into leaking CRM data

Salesforce Agentforce allowed attackers to hide malicious instructions in routine customer forms, tricking the AI into ...
GovInfoSecurity

Salesforce Patches CRM Data Exfiltration Vulnerability

Salesforce has patched a vulnerability involving its Agentforce agentic artificial intelligence tool, discovered by ...