State of Cybercrime: Salesforce Aura Data Theft
was held on 19th March 2026
About the Security Event
Cybercriminal groups continue to exploit configuration weaknesses in widely used platforms to gain access to sensitive data. This webinar examines a recent campaign attributed to the ShinyHunters group that targeted Salesforce Experience Cloud environments by abusing guest user misconfigurations. The attackers reportedly used a modified version of the AuraInspector auditing tool to query CRM data without authentication.
The session explores how the campaign operated, how configuration errors in public facing applications can expose sensitive information, and how this activity aligns with known ShinyHunters tactics. Speakers will also discuss broader trends in cybercrime, including emerging AI related security risks and evolving competition among large language model platforms. Attendees will gain insights into attack patterns and practical considerations for strengthening platform security.