{"id":163376,"date":"2023-05-05T03:23:54","date_gmt":"2023-05-05T08:23:54","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2023\/05\/sensitive-data-is-being-leaked-from-servers-running-salesforce-software"},"modified":"2023-05-05T03:23:54","modified_gmt":"2023-05-05T08:23:54","slug":"sensitive-data-is-being-leaked-from-servers-running-salesforce-software","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2023\/05\/sensitive-data-is-being-leaked-from-servers-running-salesforce-software","title":{"rendered":"Sensitive data is being leaked from servers running Salesforce software"},"content":{"rendered":"<p><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/sensitive-data-is-being-leaked-from-servers-running-salesforce-software.jpg\"><\/a><\/p>\n<p>Servers running software sold by Salesforce are leaking sensitive data managed by government agencies, banks, and other organizations, according to a <a href=\"https:\/\/krebsonsecurity.com\/2023\/04\/many-public-salesforce-sites-are-leaking-private-data\/\">post<\/a> published Friday by KrebsOnSecurity.<\/p>\n<p>At least five separate sites run by the state of Vermont permitted access to sensitive data to anyone, Brian Krebs reported. The state\u2019s Pandemic Unemployment Assistance program was among those affected. It exposed applicants\u2019 full names, Social Security numbers, addresses, phone numbers, email addresses, and bank account numbers. Like the other organizations providing public access to private data, Vermont used Salesforce Community, a cloud-based software product designed to make it easy for organizations to quickly create websites.<\/p>\n<p>Another affected Salesforce customer was Columbus, Ohio-based Huntington Bank. It recently acquired TCF Bank, which used Salesforce Community to process commercial loans. Data fields exposed included names, addresses, Social Security numbers, titles, federal IDs, IP addresses, average monthly payrolls, and loan amounts.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Servers running software sold by Salesforce are leaking sensitive data managed by government agencies, banks, and other organizations, according to a post published Friday by KrebsOnSecurity. At least five separate sites run by the state of Vermont permitted access to sensitive data to anyone, Brian Krebs reported. The state\u2019s Pandemic Unemployment Assistance program was among [\u2026]<\/p>\n","protected":false},"author":662,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[11,45,1490],"tags":[],"class_list":["post-163376","post","type-post","status-publish","format-standard","hentry","category-biotech-medical","category-finance","category-government"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/163376","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/662"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=163376"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/163376\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=163376"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=163376"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=163376"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}