Salesforce hit by a potentially massive data breach... so its CRM has become less "Customer Relationship Management" and more "Crime Recovery Manager”

Hackers claim to have breached Salesforce, stealing data from 39 major companies, including Qantas, and threatening to leak it online.

What's the key learning?

In today’s digital world, data has become extremely valuable but also extremely vulnerable.
Third-party vendors like Salesforce often become that weak link; when they’re breached, customer data can easily become collateral damage.
Qantas has been hit before — 5.7M flyers’ data was exposed via a Salesforce-linked breach.

Background: Salesforce, founded in 1999, is one of the world’s largest customer relationship management (CRM) platforms. The platform is used by more than 150,000 companies globally to send emails, store data and engage with customers.

What happened: A hacker group claims to have breached Salesforce’s systems and stolen data from 39 major companies - including Toyota, Google, Chanel, IKEA, McDonald’s, and even Australia’s own Qantas.

What else: The hacker group is demanding a ransom from Salesforce, threatening to leak the stolen data on the dark web by Friday (US time) if it isn’t paid. If Salesforce continues to refuse paying a ransom, the data of millions of customers around the world could be exposed online.

What's the key learning?

💡In today’s digital world, data has become extremely valuable... but also extremely vulnerable. Even if a company locks down its own systems, it’s only as strong as its weakest link.

💡Third-party vendors like cloud providers, call centres, and software partners such as Salesforce often become that weak link. When they get hacked, customer data becomes collateral damage.

💡This isn’t Qantas’s first rodeo either. Back in July, 5.7 million frequent flyers were exposed after a call centre operator was tricked into granting access to Qantas’s Salesforce system... proving that one small breach can open big doors for cybercriminals.

Disclaimer: Flux Technologies Pty Ltd (ABN 86 634 507 172) is an authorised representative (Representative No. 1283166) of Mozo Pty Ltd who is the holder of AFSL No. 328141. We also provide general advice on credit products under our own Australian Credit Licence No. 530103. The product information presented does not constitute an offer and we are not recommending or suggesting any particular product. Any product advice presented is of a general nature only, and is not to be taken as any sort of advice as it has not taken into account your personal circumstances, objectives, financial situation or needs. Flux may not cover all products available to you. Check out our Credit Guide and Financial Services Guide for more information.

All information contained in the Flux app, www.flux.finance, www.joinflux.com, app.flux.finance and any podcast of Flux Media Pty Ltd (ABN 27 639 804 345) is for education and entertainment purposes only. It is not intended as a substitute for professional financial, legal or tax advice. Flux Media Pty Ltd is the owner of the registered trade mark, 'What the Flux'. While we do our best to provide accurate information on the podcast, we accept no responsibility for any inaccuracies that may be communicated.

Salesforce hit by a potentially massive data breach... so its CRM has become less "Customer Relationship Management" and more "Crime Recovery Manager”

What's the key learning?

Ready to win at money?

Become smarter in just 3 minutes! ⏱️