Threat Digest

Salesforce AuraInspector Attacks: Data Theft Shocker

Forget zero-days. The latest Salesforce data theft wave isn't about a crack in the code, but a gaping hole in configuration. Attackers are using a familiar tool, twisted for malicious purposes, to pilfer your precious customer lists.

5 min read 1 month, 1 week ago

AuraInspector CLI output showing exposed Salesforce Account records via Aura endpoint

Security Tools

Mandiant's AuraInspector Reveals Salesforce's Sneaky Data Leaks — And How to Plug Them

Salesforce admins thought sharing rules covered them. Mandiant's new AuraInspector proves otherwise — scanning for data exposures that hackers exploit daily.

4 min read 1 month, 1 week ago

#aurainspector

Salesforce AuraInspector Attacks: Data Theft Shocker

Mandiant's AuraInspector Reveals Salesforce's Sneaky Data Leaks — And How to Plug Them