SecurityWeek

Salesforce AI Hack Enabled CRM Data Theft

Prompt injection has been leveraged alongside an expired domain to steal Salesforce data in an attack named ForcedLeak.

New advanced X account takeover attack targets crypto community

Hackers are hijacking crypto personalities’ X profiles through a subtle phishing campaign that abuses X’s app approval process to bypass logins and 2FA.