Salesforce Instances Hacked via Gainsight Integrations

SecurityWeek

November 21, 2025 at 9:38 AM

Actively Exploited

Summary

The ShinyHunters hackers have successfully compromised Salesforce instances through vulnerabilities in customer-managed Gainsight applications, leading to significant data theft. This incident highlights the critical need for enhanced security measures in integrations between third-party applications and major platforms like Salesforce.

Impact

Salesforce instances, Gainsight applications

In the Wild

Yes

Timeline

Newly disclosed

Remediation

Implement enhanced security protocols for Gainsight integrations, conduct thorough security audits of connected applications, and monitor for suspicious activity.

Read Original Article