ShinyHunters claims ongoing Salesforce Aura data theft attacks

Salesforce is warning customers that hackers are targeting websites with misconfigured Experience Cloud platforms that give ...
Dark Reading

'Overly Permissive' Salesforce Cloud Configs in the Crosshairs

Some customers have mishandled guest user configurations otherwise intended to allow third-party access to important — and sensitive — client data.
CSOonline

Overly permissive ‘guest’ settings put Salesforce customers at risk

Salesforce warns that a threat campaign is exploiting overly permissive Experience Cloud guest configurations to harvest data from public portals. Salesforce is urging its customers to review their ...
Computer Weekly

Salesforce tracks possible ShinyHunters campaign targeting its users

Salesforce warned users of an uptick in malicious activity targeting Experience Cloud customers with misconfigured user settings via an open source tool.
SecurityWeek

Hundreds of Salesforce Customers Allegedly Targeted in New Data Theft Campaign

Salesforce has issued another warning to customers as the notorious ShinyHunters cybercrime group has announced a new ...
TMCnet

Cybersecurity Leaders Adopt Sweep to Agentically Govern Salesforce Environments

NEW YORK, March 12, 2026 /PRNewswire/ -- Sweep, the agentic layer for enterprise systems, today announced that leading cybersecurity and identity companies, including SailPoint, Varonis, Vanta, and ...
Infosecurity Magazine

ShinyHunters Targets Hundreds of Websites in New Salesforce Campaign

​ShinyHunters has a long track record of going after Salesforce customers, having targeted their instances on multiple occasions in connected campaigns last year.
BankInfoSecurity

Salesforce Sounds Alarm Over Fresh Data Extortion Campaign

A prolific and noisy cybercrime gang with a penchant for stealing Salesforce customers' data and holding it ransom is taking advantage of misconfigured guest ...