Hackers are tricking employees at companies in Europe and the Americas into installing a modified version of a Salesforce-related app, allowing the hackers to steal reams of data, gain access to other ...

Members of a financially motivated threat group are impersonating IT support staff in convincing phone calls and talking employees into granting access to their organization’s Salesforce environments.

Google researchers have uncovered a hacker campaign called “The Com” that tricks company employees into installing a modified Salesforce app, allowing attackers to steal sensitive data and extort ...

In an active campaign, a financially motivated threat actor is voice phishing (Vishing) Salesforce customers to compromise their organizational data and carry out subsequent extortion. Tracked as ...

Over the summer of 2025, a series of breaches exposed risks hidden within software-as-a-service (SaaS) platforms. The ShinyHunters attacks on Salesforce and the compromise of Salesloft's Drift ...

The attacks linked to a threat group known as ShinyHunters have now compromised Google in addition to numerous other major companies. A wave of data-theft attacks against Salesforce CRM customers has ...

A campaign of cyber attacks orchestrated via social engineering against users’ Salesforce instances is now being attributed to the ShinyHunters cyber crime gang with growing confidence, and the list ...