Actively Exploited
The ShinyHunters hackers have successfully compromised Salesforce instances through vulnerabilities in customer-managed Gainsight applications, leading to significant data theft. This incident highlights the critical need for enhanced security measures in integrations between third-party applications and major platforms like Salesforce.
Impact: Salesforce instances, Gainsight applications
Remediation: Implement enhanced security protocols for Gainsight integrations, conduct thorough security audits of connected applications, and monitor for suspicious activity.