Salesforce blocks Gainsight tools while it reviews possible data leak: Here's what happened
Posted on: Nov 21, 2025 10:27 IST | Posted by: Livemint
Salesforce is investigating what it described as “unusual activity” involving Gainsight-published applications that may feature open client information, prompting the companion to suspend access to the affected tools while the inquiry continues.
Access to Gainsight apps temporarily revoked
In a brief update posted on its status site, Salesforce said some Gainsight-developed applications that customers install and manage themselves may have allowed unauthorised access to certain Salesforce data. As a precaution, the company has revoked all active access to the applications.
Salesforce stressed that there was no evidence to suggest the issue stemmed from a flaw in its own platform, and said it was working to understand the extent of the activity.
Gainsight confirmed on its website that it is cooperating with Salesforce as the investigation unfolds, but did not provide additional details. Requests for further comment from the company were not immediately returned.
Growing risks in software integrations
Although the scale and nature of the incident remain unclear, security researchers note that attackers are increasingly targeting the connective tissue between major software-as-a-service platforms. Integrations that allow different systems to share data can also create high-value entry points for hackers if not properly secured.
Recent incidents underscore this pattern. Last month, Google said that a flaw in Oracle’s E-Business Suite had likely affected more than 100 organisations. Earlier in the year, Google disclosed that attackers had convinced employees at Salesforce customer organisations to install tampered versions of Salesforce’s Data Loader tool, enabling access to sensitive information.
Jaime Blasco, cofounder of Nudge Security, said these types of integrations have become prime targets. Writing on LinkedIn, he noted that attackers often bypass heavily fortified core platforms by exploiting connected services with elevated permissions. Speaking to Reuters, he added: “This is the new attack surface.”
Last month, in a separate story, it was also reported that cybercriminals tied to a series of ransomware attacks on UK retailers say they are behind the theft of nearly one billion records from a US cloud services provider, Salesforce. The hackers, operating under the name Scattered LAPSUS$ Hunters, told Reuters that they accessed large amounts of personal data by targeting organisations that use Salesforce’s products.
The group appeared to be a splinter faction of the broader LAPSUS$ gang and has claimed responsibility for breaches affecting Marks & Spencer, the Co-op, and Jaguar Land Rover earlier this year. According to security researchers, the outfit is monitored by Google’s Threat Intelligence Group under the identifier UNC6040, which has previously highlighted the group’s reliance on social engineering to compromise victims.
(With inputs from Reuters)
Global News Perspectives
In today's interconnected world, staying informed about global events is more important than ever. ZisNews provides news coverage from multiple countries, allowing you to compare how different regions report on the same stories. This unique approach helps you gain a broader and more balanced understanding of international affairs. Whether it's politics, business, technology, or cultural trends, ZisNews ensures that you get a well-rounded perspective rather than a one-sided view. Expand your knowledge and see how global narratives unfold from different angles.
Customizable News Feed
At ZisNews, we understand that not every news story interests everyone. That's why we offer a customizable news feed, allowing you to control what you see. By adding keywords, you can filter out unwanted news, blocking articles that contain specific words in their titles or descriptions. This feature enables you to create a personalized experience where you only receive content that aligns with your interests. Register today to take full advantage of this functionality and enjoy a distraction-free news feed.
Like or Comment on News
Stay engaged with the news by interacting with stories that matter to you. Like or dislike articles based on your opinion, and share your thoughts in the comments section. Join discussions, see what others are saying, and be a part of an informed community that values meaningful conversations.
Download the Android App
For a seamless news experience, download the ZisNews Android app. Get instant notifications based on your selected categories and stay updated on breaking news. The app also allows you to block unwanted news, ensuring that you only receive content that aligns with your preferences. Stay connected anytime, anywhere.
Diverse News Categories
With ZisNews, you can explore a wide range of topics, ensuring that you never miss important developments. From Technology and Science to Sports, Politics, and Entertainment, we bring you the latest updates from the world's most trusted sources. Whether you are interested in groundbreaking scientific discoveries, tech innovations, or major sports events, our platform keeps you updated in real-time. Our carefully curated news selection helps you stay ahead, providing accurate and relevant stories tailored to diverse interests.
No comments yet.