Salesforce industry cloud flaws put sensitive data at global risk

Security researchers from AppOmni have identified more than 20 security issues, including several zero-day vulnerabilities, in Salesforce industry clouds, putting data held by thousands of organisations at risk of exposure.

The findings concern core features of Salesforce's industry-specific cloud suite, which is widely used by companies in sectors such as finance, healthcare, government, and telecommunications. These vulnerabilities and configuration risks have the potential to expose a vast array of sensitive information, including names, email addresses, home addresses, financial records, and healthcare information. The issues also include the theft of login credentials, which attackers could use to gain further access to other company systems.

https://securitybrief.com.au/story/salesforce-industry-cloud-flaws-put-sensitive-data-at-global-risk