Threat Research Archives - AppOmni

🗞️ UNC6395 Targets Salesforce via Salesloft Drift: What happened, why it happened, and what you can learn from it

Threat Research

Filter by

AO Labs, Blog

Detecting ShinyHunters/UNC6040 Vishing Campaigns in Salesforce OAuth Attacks

Spot UNC6040 vishing attacks, secure OAuth apps, boost SaaS security with AppOmni’s Threat Detection.
AO Labs, Blog

Post-Incident CRM Forensics: Why Deploying AppOmni Is a Best Practice

OAuth abuse exposes SaaS data. AppOmni’s threat detection and security posture management shut it down.
AO Labs, Blog

Low-Code, High Stakes: Why Security Can’t Be an Afterthought for Customers Using Salesforce Industry Clouds

New research reveals critical security flaws in Salesforce industry clouds. Discover the risks and how to protect your organization now.
AO Labs

Salesforce Industry Clouds: 0-days and Exploitable Misconfigs

AppOmni’s latest research reveals 20+ OmniStudio security flaws, including 5 CVEs affecting Salesforce industry clouds. Learn how misconfigurations expose sensitive data and…
AO Labs, Blog

Microsoft Power Pages: Data Exposure Reviewed

Learn about a data exposure risk in Microsoft Power Pages due to misconfigured access controls, highlighting the need for better security and…
AO Labs, Blog

Enterprise ServiceNow Knowledge Bases at Risk: Extensive Data Exposures Uncovered

Read the blog to learn about ServiceNow’s Knowledge Base data exposure risks and how to mitigate these issues.
AO Labs, Blog

Potential Widespread Data Exposure Analysis: Oracle NetSuite

Read the blog for an analysis on the potential data exposure of Oracle NetSuite with a thorough understanding of NetSuite access control…
AO Labs, SaaS Resources

Salesforce Community Cloud Scanner

Learn how to secure your Salesforce Community websites from data exposure risks with support from the AO Labs threat research team.
Blog

SaaS Risks in Healthcare: Anatomy of a Data Exposure at the HSE

SaaS Security Engineer Aaron Costello explains how to handle sensitive data in SaaS apps, as learned from misconfiguration in Ireland’s vaccination portal…
Blog

Balancing Act: Navigating the Advantages and Risks of ServiceNow’s New Security Attributes

Security Attributes offer an alternative method for access control via role definitions, designed to be human-readable and offer detailed auditing and logging.