Bleeping Computer

Google: Hackers target Salesforce accounts in data extortion attacks

Google has observed hackers claiming to be the ShinyHunters extortion group conducting social engineering attacks against multi-national companies to steal data from organizations' Salesforce ...
Dark Reading

Vishing Crew Targets Salesforce Data

Members of a financially motivated threat group are impersonating IT support staff in convincing phone calls and talking employees into granting access to their organization’s Salesforce environments.
Dark Reading

Misconfigured Custom Salesforce Apps Expose Corporate Data

A new security advisory warns Salesforce users with customized instances to check for common programming errors and misconfigurations that can expose their sales data. At the heart of the problem is ...
CSOonline

Hackers use Vishing to breach Salesforce customers and swipe data

In an active campaign, a financially motivated threat actor is voice phishing (Vishing) Salesforce customers to compromise their organizational data and carry out subsequent extortion. Tracked as ...