all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Many Public Salesforce Sites are Leaking Private Data

Add to bookmarks
April 28, 2023, 2:09 a.m. | BrianKrebs

Security Boulevard securityboulevard.com

A shocking number of organizations -- including banks and healthcare providers -- are leaking private and sensitive information from their public Salesforce Community websites, KrebsOnSecurity has learned. The data exposures all stem from a misconfiguration in Salesforce Community that allows an unauthenticated user to access records that should only be available after logging in.


The post Many Public Salesforce Sites are Leaking Private Data appeared first on Security Boulevard.

access a little sunshine banks charan akiri community data dc health dc health link healthcare healthcare providers huntington bank information latest warnings logging logging in matthew jennings mike rupert misconfiguration organizations private private data public salesforce salesforce community websites scott carbee security security boulevard sensitive information stem tcf bank the coming storm time to patch vermont websites

Visit resource

More from securityboulevard.com / Security Boulevard

Dropbox Hacked: eSignature Service Breached 12 hours ago | securityboulevard.com
application security appsec breached cloud security +39
USENIX Security ’23 – “My Privacy for their Security”: Employees’ Privacy Perspectives and Expectations when … 14 hours ago | securityboulevard.com
access authors conference employees +17
Key Areas Where Open-Source Security Needs to Evolve 15 hours ago | securityboulevard.com
cybersecurity cybersecurity experts effect experts +10
News alert: LayerX Security raises $24M Series A funding for its ‘enterprise browser’ security platform 16 hours ago | securityboulevard.com
alert browser browser security capital +26
Strata Identity Names Granville Schmidt Chief Architect 16 hours ago | securityboulevard.com
advancements appointed april architect +22
LayerX Security Raises $24M for its Browser Security Platform, Enabling Employees to Work Securely from … 16 hours ago | securityboulevard.com
adoption browser browser security companies +14
Survalyzer SPF and DKIM configuration: Step By Step Guideline 16 hours ago | securityboulevard.com
article blog configuration dkim +6
Vtiger SPF & DKIM Setup: Step By Step Guideline 17 hours ago | securityboulevard.com
amp blog businesses cloud +11
Spamhero SPF and DKIM configuration: Step By Step Guideline 17 hours ago | securityboulevard.com
article blog configuration dkim +6

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Cloud Security Analyst

@ Cloud Peritus | Bengaluru, India
View on infosec-jobs.com

Cyber Program Manager - CISO- United States – Remote

@ Stanley Black & Decker | Towson MD USA - 701 E Joppa Rd Bg 700
View on infosec-jobs.com

Network Security Engineer (AEGIS)

@ Peraton | Virginia Beach, VA, United States
View on infosec-jobs.com

SC2022-002065 Cyber Security Incident Responder (NS) - MON 13 May

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com

Information Systems Security Engineer

@ Booz Allen Hamilton | USA, GA, Warner Robins (300 Park Pl Dr)
View on infosec-jobs.com
View more jobs