Salesforce AI Hack Enabled CRM Data Theft

Joseph K
Sep 24, 2025
1 min read

The attack method, dubbed ForcedLeak, was discovered by researchers at Noma Security, a company that recently raised $100 million for its AI agent security platform.

Salesforce Agentforce enables businesses to build and deploy autonomous AI agents across functions such as sales, marketing, and commerce. These agents act independently to complete multi-step tasks without constant human intervention.

The ForcedLeak attack method identified by Noma researchers involved Agentforce’s Web-to-Lead functionality, which enables the creation of a web form that external users such as conference attendees or individuals targeted in a marketing campaign can fill out to provide lead information. This information is saved into the customer relationship management (CRM) system.

https://www.securityweek.com/salesforce-ai-hack-enabled-crm-data-theft/

Salesforce AI Hack Enabled CRM Data Theft

Comments

Recent Posts

AWS PartnerCast Highlights How Treehouse Software Replicates Mainframe Data to AWS Without Disruption

NBCUniversal, AWS, Adobe, and WPP Leaders Weigh AI Ad Innovation and IP Protection at CES

AUMOVIO and AWS Partner to Accelerate Safer, Scalable Autonomous Driving Development

AWS Introduces New Well-Architected Lens for Data Residency and Hybrid Cloud Compliance

GDIT Named AWS Global Defense Consulting Partner of the Year for Tactical Edge AI Innovation

Get In Touch

Headquarters

Seoul Office