I’m not going to take long on this, but I’ve decided that a short mention on the blog is worth it.
If you use Salesforce, you need to pay attention. The ShinyHunters group continues to target organizations that rely on the platform, and the latest victim appears to be Infinite Campus, a widely used education technology company.
According to reporting, more than 137,000 school staff accounts were affected after attackers gained unauthorized access tied to a Salesforce environment. This is just the latest incident in a campaign that has impacted multiple organizations over the past year.
You can search this blog for either ShinyHunters or Salesforce and find plenty of prior coverage. Unfortunately, the hunters continue to find new victims.
Remember that groups like ShinyHunters don’t always need a software flaw. In many cases, social engineering and stolen credentials are enough to gain access.
The article is titled Infinite Campus data breach affects 137,000 school staff accounts.
If you know someone who uses Salesforce, send them this article. The hunters are still on the prowl.
Discover more from Jared's Technology podcast network
Subscribe to get the latest posts sent to your email.