Salesforce.com Security Woes as Phishers Trick Salesforce.com Employee   - 2,070 Views, 2 Comments

Summary: A Salesforce.com security breach has lead to an untold number of Salesforce.com's customers' data being put at risk. According to sources, "the information in the contact list included individuals' names, company names, email addresses, telephone numbers of Salesforce.com customers," and the like.
Most Recent Searches that Led to This Page: email from salesforce com mailed-by, salesforce data security over the internet, salesforce com security issues, salesforce com security breach, salesforce com security, salesforce com mobile security, salesforce com flaw, salesforce com and security, number of salesforce employees, salesforce security

Previous Article « Government Spying on All AT&T Internet Traffic - All of It - Says AT&T Whistleblower Mark Klein
Read Next Article » Journalists Use Free Babelfish Online Translator to Query - and Offend - Dutch Dignitary

Salesforce.com Security Woes as Phishers Trick Salesforce.com Employee        Follow Anne on Twitter     Friend Anne on Facebook

A Salesforce.com security breach has lead to an untold number of Salesforce.com’s customers’ data being put at risk. According to sources, “the information in the contact list included individuals’ names, company names, email addresses, telephone numbers of Salesforce.com customers,” and the like.

Explained Salesforce.com’s EVP of Technology, Parker Harris, “We learned that a Salesforce.com employee had been the victim of a phishing scam that allowed a Salesforce.com customer contact list to be copied. To be clear, a phisher tricked someone into disclosing a password but this intrusion did not stem from a security flaw in our application or database.”

True, it did not stem from a security flaw in your application or database - it stemmed from a security flaw in your employee. I’m not sure that’s much better.

Was this information helpful? If so, please leave us a review!

SHARE:
Salesforce.com Security Woes as Phishers Trick Salesforce.com Employee
SOCIAL:        Friend Anne on Facebook        Follow Anne on Twitter        Twitter Explained in Plain English
SEARCH:
       

Leave a Comment

Previous Article « Government Spying on All AT&T Internet Traffic - All of It - Says AT&T Whistleblower Mark Klein
Read Next Article » Journalists Use Free Babelfish Online Translator to Query - and Offend - Dutch Dignitary

Read more:

»  Something’s Very Phishy - Microsoft Files Trademark Lawsuits Against 117 Phishers

»  Tax Refund Email from IRS at GovBenefits.gov is Fake! Don’t Get Caught by IRS Phishing Scam!

»  Microsoft Advisory on Web Browser Phishing Trick Involving Overlapping Browser Windows

»  AOL Offers Security Key, Adds Double Layer Log-in Authentication for Users

For additional similar stories check out our archives on Security

NOTE: We never, ever, ever will recommend any product or service on this site that we have not regularly used ourselves and do not wholeheartedly believe in. That said, in some cases after being very pleased with a product or service, we may enter into a relationship with the provider of that product or service such that if someone purchases that product or service based on our recommendation, we may get a small payment. Such payments go towards the upkeep of the Internet Patrol.

 

2 Comments »

  1. It’s not a security flaw but it does mean that, security is not assured. It is not acceptable.

    Now u can access Salesforce through mobile also it seems check out this link.
    http://www.modazzle.com?channel=theinternetpatrol

    Comment by kenith — 11/12/2007 @ 9:43 pm

  2. My Salesforce sales agent e-mailed me without bcc his entire customer base email addresses, meaning over 70 of our e-mail addresses were exposed to one another. To me, this is enough of a security breach to find an alternative CRM. He didn’t even have an opt-out button. Ironically, he was trying to upsell us to a e-mail campaign feature.

    Comment by Heather — 1/20/2009 @ 2:29 am

RSS feed for comments on this post.

Leave a comment

Warning! All comments which contain URLs and are clearly just spam to generate a link back to the URL will be deleted on sight. Don't bother wasting your time!

If you are going to include a URL in your comment,
please keep it under 25 characters in length,
or use TinyURL to shorten it before including it in your comment.

Line and paragraph breaks are automatic, your email address is never displayed.

(required)

(required)


 
 This article first appeared on 11/12/2007
The Internet Patrol
Patrolling the Internet for You!