Salesforce alerted customers about a potential data breach involving third-party app Gainsight after detecting unusual activity. The hackers behind the incident are linked to known cybercriminal groups, and affected organizations include numerous industries. #Gainsight #ScatteredSpider #ShinyHunter #SalesforceDataBreach
Keypoints
- Salesforce discovered unusual activity related to the Gainsight app, raising concerns of data exposure.
- The company revoked access tokens and temporarily removed Gainsight from the AppExchange as a precaution.
- The incident does not appear to be caused by a vulnerability in Salesforce’s platform itself.
- Hackers associated with Scattered Spider and ShinyHunter claimed responsibility, stealing data from 284 organizations.
- Law enforcement agencies in the U.S. and U.K. arrested several members of the hacking groups involved.
Read More: https://therecord.media/salesforce-cuts-off-access-to-third-party-unusual-activity