Overly permissive ‘guest’ settings put Salesforce customers at risk | CSO Online

Salesforce is warning customers about a cybercrime campaign by the group ShinyHunters that exploits overly permissive guest user settings in Experience Cloud to harvest data from public portals. Attackers are using a modified tool to query data through these misconfigured portals, leading to potential data theft and extortion.