3rd Party Risk Management, Cybercrime, Fraud Management & Cybercrime Salesforce Revokes Gainsight Authentication Tokens Akshaya Asokan (asokan_akshaya) • November 20, 2025 Image: The Bold Bureau/Shutterstock Salesforce, a leading customer relationship management platform based in the United States, has informed customers of potential data theft by hackers exploiting vulnerabilities in a…
Salesforce recently issued a security advisory alerting users to unauthorized access to customer data via third-party applications provided by Gainsight. This breach not only raises alarm bells across the user base but also highlights persistent vulnerabilities associated with OAuth integrations—an area already marked by significant data breaches within the Salesforce…
The Breach Exposed Toys “R” Us Canada has disclosed a significant data breach affecting customer information, with details reportedly resurfacing on the dark web. The breach occurred back in July, revealing that cybercriminals accessed and leaked sensitive personal information of customers. Notifications to those affected indicated that while no financial…
The healthcare sector continues to be a prime target for cybercriminals, experiencing a slew of cyberattacks that shows no sign of abating in 2023. According to a report from the U.S. Government’s Office for Civil Rights, the first quarter alone saw 145 reported data breaches, down from 707 incidents in…
Cybercrime, Fraud Management & Cybercrime, Ransomware Chaos Theory Meets Ransomware, Creating Unpredictable Outcomes Mathew J. Schwartz (euroinfosec) • October 17, 2025 Image: Shutterstock Once predominantly a forte of Russian cybercriminals evading law enforcement, a surge in ransomware activity is now attributed to reckless teenagers from the West who operate under…
Microsoft Wraps Up 2024 Patch Tuesday with Critical Security Fixes Microsoft concluded its Patch Tuesday updates for December 2024, addressing a total of 72 security vulnerabilities across its software ecosystem, including a specific flaw reported as actively exploited in the wild. Of these vulnerabilities, 17 have been classified as Critical,…
Cybercriminals have increasingly turned their attention to airlines, drawn by the vast amounts of personal data these companies collect. Among the most sought-after information are passports and government identification, which pose a significant risk for long-term identity theft. According to Incogni, a company specializing in data privacy and removal, leaks…
Ambitious Employees Tout New AI Tools, Overlook Significant SaaS Security Risks As organizations increasingly adopt AI technologies, IT security teams, including Chief Information Security Officers (CISOs), face challenges reminiscent of earlier shadow IT concerns related to Software as a Service (SaaS). Employees are discreetly integrating AI applications into their workflows…
Massive Data Breach Affects 39 Companies Due to Salesforce Vulnerability On October 3, 2025, Hackread.com reported a significant cybersecurity incident involving the theft of 989 million records from 39 notable companies globally. This breach was reportedly executed by a hacker group exploiting a vulnerability in Salesforce. The group, identifying as…
