new | ask | show | jobs
zenmac 2 days ago  [ - ]

>In October 2025, data stolen from the Salesforce....

Seems like a salesforce leak. Not to single out sales force here. Could easily be fill in the ____ big corp. When are people going to get there is no absolute digital security. And at currently state, it is much more secure to NOT have all the data aggregated in one place. Of course this would go against the data mining operation. We should look at this from a perspective that benefits the user in the long term.

Server/relay should be very thin layer NOT storing any identifiable info about the user except for public keys. All other info should be stored locally where ONLY the user has access to them.

Thorrez 2 days ago  [ - ]

I don't think Salesforce itself was hacked. It says "data stolen from the Salesforce instances of multiple companies".

HIBP links to [1], which links to [2], which says

>The FBI last week warned airlines in the US that the group was targeting the aviation sector. In a post on X, the FBI said the group uses social engineering techniques, often impersonating employees or contractors to deceive IT help desks into granting access, and bypassing multi-factor authentication.

So it sounds like phishing attacks against the individual airlines. It sounds pretty much the same as [3], which goes into detail of the exact mechanism that phishers can use to steal Salesforce data. It does sound like it is a little bit Salesforce's fault, because Salesforce's UI makes it really easy to grant an attacker access to your database without realizing it. Salesforce needs to improve the permission granting UI so that it's clearer what is going on.

[1] https://www.theguardian.com/business/2025/oct/11/hackers-lea...

[2] https://www.theguardian.com/business/2025/jul/02/qantas-conf...

[3] https://cloud.google.com/blog/topics/threat-intelligence/voi...

skybrian 2 days ago  [ - ]

There are lots of Saleforce customers getting hacked. [1]

> Insurance giant Allianz Life, Google, fashion conglomerate Kering, the airline Qantas, carmaking giant Stellantis, credit bureau TransUnion, and the employee management platform Workday, among several others, have confirmed their data was stolen in these mass hacks.

Perhaps it's bad security defaults which are in some sense user error, but when it becomes common pattern then I think the company needs to make systematic fixes.

Compare with many Snowflake customers getting hacked.

[1] https://techcrunch.com/2025/10/03/hacking-group-claims-theft...