Last scanned 15 hours ago
Not yet scanned
Not yet scanned
Not yet scanned
Canvas, a widely-used classroom learning platform owned by Salesforce, suffered a cybersecurity breach that potentially exposed personal data of millions of students and teachers. The incident represents an active data breach affecting a large user base of a Salesforce product.
Medtronic is investigating unauthorized access to its IT systems that may be linked to cybersecurity exploits targeting companies using Salesforce Experience Cloud. This represents a confirmed incident affecting a Salesforce product, though the full scope of impact to Salesforce itself remains unclear.
Multiple ransomware gangs (ShinyHunters and Qilin) claimed responsibility for breaching Salesforce and exfiltrating approximately 500,000 Salesforce records from Cushman & Wakefield following a vishing attack. This represents an active ransomware incident with confirmed data loss directly involving Salesforce customer data.
A Salesforce breach occurred involving an OAuth token vulnerability that was exploited to compromise the platform. The incident demonstrates how OAuth tokens used for integrations across enterprise platforms like Salesforce can be leveraged as attack vectors when improperly secured.
Salesforce's subsidiary Slack is pursuing an antitrust lawsuit against Microsoft in UK High Court, alleging anticompetitive bundling practices related to Microsoft Teams. This represents a significant regulatory/legal action involving Salesforce's owned business unit.
Track score changes, new CVEs, and breach news automatically.
Start free monitoring - no credit cardGet daily risk scores, breach alerts, and compliance reports for all your SaaS tools.
Start free - 30 day trial