Tag Salesforce

🔍 Weekly Overview: Fortinet Vulnerability, Chrome Zero-Day, BadIIS Malware, Record DDoS Attack, SaaS Security Incident & More

Cybersecurity Weekly Update: New Vulnerabilities and Persistent Threats This week, the cybersecurity landscape revealed alarming developments as multiple organizations fell victim to sophisticated attacks, highlighting the evolving tactics employed by cybercriminals. Notably, Fortinet disclosed a serious vulnerability affecting its FortiWeb application firewall, categorized as CVE-2025-58034. This flaw, assigned a medium…

Read More🔍 Weekly Overview: Fortinet Vulnerability, Chrome Zero-Day, BadIIS Malware, Record DDoS Attack, SaaS Security Incident & More

Gainsight Adds More Customers Affected by Salesforce Security Alert

Gainsight Reports Expanded Impact of Cyber Incident Gainsight has announced that recent suspicious activity affecting its applications has impacted more customers than initially anticipated. The company revealed that Salesforce initially identified three customers at risk, but by November 21, 2025, this list had grown significantly. While the exact number of…

Read MoreGainsight Adds More Customers Affected by Salesforce Security Alert

ShinyHunters Assert Responsibility for SSO Account Data Breaches

In a troubling development, the ShinyHunters extortion group has claimed responsibility for a series of voice phishing attacks, specifically targeting single sign-on (SSO) accounts associated with major platforms such as Okta, Microsoft, and Google. These attacks allow cybercriminals to infiltrate corporate Software as a Service (SaaS) platforms and exfiltrate sensitive…

Read MoreShinyHunters Assert Responsibility for SSO Account Data Breaches

Phishers Take Advantage of Salesforce’s Email Services Zero-Day in Targeted Facebook Attack

A sophisticated phishing campaign targeting Facebook users has been detected, exploiting a critical zero-day vulnerability within Salesforce’s email services. This exploit enables malicious actors to craft highly tailored phishing messages utilizing Salesforce’s domain and infrastructure, significantly increasing the chances of success. Researchers at Guardio Labs, Oleg Zaytsev and Nati Tal,…

Read MorePhishers Take Advantage of Salesforce’s Email Services Zero-Day in Targeted Facebook Attack

Supply Chains, AI, and the Cloud: The Major Failures (and One Triumph) of 2025

In recent months, a series of sophisticated cyberattacks leveraging artificial intelligence (AI) have raised alarms in the technology sector. One particularly concerning incident involved a prompt injection attack against GitLab’s Duo chatbot, wherein malicious code was embedded within a legitimate code package. This exploit not only blurred the lines between…

Read MoreSupply Chains, AI, and the Cloud: The Major Failures (and One Triumph) of 2025

The Most Devastating Hacks of 2025

This year has been marked by notable incidents in cyberspace, coinciding with major geopolitical shifts driven by U.S. President Donald Trump and his administration. Amidst these developments, a persistent wave of cyber threats has emerged—data breaches, ransomware, digital extortion, and state-sponsored attacks have increasingly become part of the routine landscape…

Read MoreThe Most Devastating Hacks of 2025

Everest Ransomware Group Claims to Have Stolen Over 1TB of Chrysler Data – Hackread – Cybersecurity News, Data Breaches, AI, and More

On December 25, coinciding with global Christmas celebrations, the Everest ransomware group released a statement on its dark web leak site alleging a breach of Chrysler systems, a prominent American automobile manufacturer. The group claims to have extracted a staggering 1,088 GB (over 1 TB) of data, which they characterize…

Read MoreEverest Ransomware Group Claims to Have Stolen Over 1TB of Chrysler Data – Hackread – Cybersecurity News, Data Breaches, AI, and More

PornHub Targeted by Extortion Following Theft of Premium Member Activity Data

In a significant cybersecurity breach, the adult video platform PornHub has fallen victim to extortion attempts from the ShinyHunters hacking group. This follows the reported theft of search and viewing history concerning PornHub’s Premium members, which stemmed from a recent compromise of analytics provider Mixpanel. Last week, PornHub issued a…

Read MorePornHub Targeted by Extortion Following Theft of Premium Member Activity Data