The root cause of the major Salesforce breaches that began around May 2025 was not a technical vulnerability in the Salesforce platform itself, but rather a combination of sophisticated social engineering attacks and the abuse of OAuth-connected app permissions. The attackers targeted employees at organizations using Salesforce, such as Google, Adidas, Chanel, and others, by…
Advance Auto Parts confirmed a data breach that exposed employee information after attackers accessed their third-party cloud database. The breach, which occurred in late May, led to the sale of alleged company data in early June. The stolen data includes sensitive information such as Social Security numbers of current and former employees and job applicants….
What’s happened? Just days before Christmas, when most people probably weren’t paying too much attention, password management service LastPass revealed that hackers had accessed customers’ password vaults. You’re probably thinking of the original announcement LastPass made back on August 25 2022, where it said that a hacker had managed to gain access to a developer’s…
It appears that consumers are certainly becoming more proactive about protecting themselves from identity theft. But small business owners don’t seem to share their concern. According to a recent survey, small business owners are victims of fraud at a rate of 15 percent more than the general population. In 2010, small business owners lost about…
Information about the recent Epsilon Breach On March 30th, Epsilon, a major e-mail marketing services provider experienced a security breach that compromised the customer data of some of the businesses that utilize Epsilon for their e-mail marketing needs. The breach affects over 90 high profile companies including but not limited to drugstore chain Walgreens, electronics…
