ShinyHunters claims ongoing Salesforce Aura data theft attacks

By Bill Toulas

AI Summary

The ShinyHunters extortion gang claims to be actively exploiting a new vulnerability to steal data from Salesforce Aura instances, while Salesforce warns customers about attacks targeting misconfigured Experience Cloud platforms. The attacks exploit configurations that give guest users unintended access to sensitive customer data.

Read full article → https://www.bleepingcomputer.com/news/security/shi…

Relevance score: 80.0/100

# More from March 10

1
New Attack Against Wi-Fi Schneier on Security
2
FBI investigating ‘suspicious activities’ on agency network following February incident The Record
3
Dutch govt warns of Signal, WhatsApp account hijacking attacks BleepingComputer
4
UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device The Hacker News
6
Microsoft Teams phishing targets employees with backdoors BleepingComputer
7
Ericsson US discloses data breach after service provider hack BleepingComputer
8
Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials The Hacker News
9
Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft The Hacker News
10
Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure The Hacker News