The Hacker News

Salesforce Patches Critical ForcedLeak Bug Exposing CRM Data via AI Prompt Injection

ForcedLeak flaw in Salesforce Agentforce allows data exfiltration via indirect prompt injection; Salesforce issues patch.
Security Boulevard

How Application Penetration Testing Prevents Real-World Breaches

Applications are prime targets for attackers, and breaches often start with a single vulnerability. Application penetration ...
CSO Online

Vulnerability in Salesforce AI could be tricked into leaking CRM data

Salesforce Agentforce allowed attackers to hide malicious instructions in routine customer forms, tricking the AI into ...