The number of Salesforce customers affected by the recent compromise of Gainsight-published applications is yet to be publicly confirmed, but Salesforce released indicators of compromise (IoCs) and simultaneously shed some light on when the attack likely started. The provided list includes IP addresses and User Agents, showing that the first reconnaissance and unauthorized access activity started on November 8. The rest of the suspicious intrusions happened between November 16 and 23, from IP addresses associated … More →
The post Gainsight breach: Salesforce details attack window, issues investigation guidance appeared first on Help Net Security.
http://news.poseidon-us.com/TPTW3D
