Salesforce is a organization tracked across 50 threat clusters and 194 intelligence report mentions on ThreatCluster. First observed November 3, 2025; most recent activity July 14, 2026.
A critical zero-day vulnerability (CVE-2026-35273) in Oracle PeopleSoft has been exploited by the ShinyHunters group, leading to breaches of over 100 organizations, primarily in the education sector. The vulnerability…
The Personal Information Protection Commission of South Korea has fined three luxury brands under LVMH, including Louis Vuitton and Dior, a total of 36.033 billion won (approximately $24.9 million) due to data breaches…
OrcaRouter Security Research released its AI Threat Report 2026, identifying prompt injection as the leading risk to large language model (LLM) applications, with a 340% increase in such attacks year-over-year. The…
A supply chain attack on the node-ipc npm package has compromised three versions (9.1.6, 9.2.3, 12.0.1) with credential-stealing malware. The attack exploited an expired domain to hijack a dormant maintainer account,…
The newly identified Pink extortion group has emerged, utilizing voice phishing (vishing) tactics to gain access to Microsoft 365 accounts. Researchers from Unit 42 have tracked the group under cluster designation…
Recent developments in cybersecurity emphasize the adoption of a Zero Trust approach across cloud services and enterprise networks, particularly in response to increasing AI-driven attacks. Organizations utilizing…
A recent study identified 28 malicious LLM proxy routers that can modify AI service responses and access sensitive credentials. The research tested 28 paid routers and 400 free routers, revealing that nine injected…
Since February 2026, the BlackFile Group has targeted retail and hospitality sectors, employing vishing attacks to steal employee credentials. Palo Alto Networks' Unit 42 reported that the group uses spoofed VoIP…
Instructure, the company behind the Canvas learning management system, confirmed a significant data breach involving the ShinyHunters hacking group. The attackers claim to have stolen over 3.65TB of data, potentially…
In June 2026, a significant security incident involving Klue, a market intelligence platform, allowed the Icarus threat actor group to exfiltrate Salesforce CRM data from multiple organizations, including Huntress. The…