How ShinyHunters Broke Salesforce: The Gainsight OAuth Attack Explained
Автор: Decode The Hacks
Загружено: 2026-01-06
Просмотров: 12
Описание:
In November 2025, the world's most secure CRM platform didn't get hacked. Its trusted partners did. 🕵️♂️ This is the forensic story of how the Salesforce/Gainsight Supply Chain Attack exposed over 1,000 organizations to the "ShinyHunters" cartel.
We break down the technical nightmare of OAuth Token Abuse. Hackers didn't need passwords; they stole the "keys" that Gainsight used to talk to Salesforce.
📽️ In this deep dive:
The Precursor: How the Salesloft Drift breach (Aug 2025) laid the trap.
The Mechanism: How "Scattered LAPSUS$ Hunters" used valid tokens to bypass MFA.
The Fallout: Why revoking tokens wasn't enough to stop the data bleed.
🛡️ Forensic Lesson: "Ecosystem Trust" is the new zero-day. If you use SaaS integrations, you need to watch this.
🔍 TOPICS WE DECODE: We provide forensic reporting on Supply Chain Attacks, OAuth Security, and SaaS Breaches. Our mission is to explain the "How" and "Why" behind the world's most sophisticated hacks through technical, documentary-style investigations.
#SalesforceHack #Gainsight #SupplyChainAttack #ShinyHunters #CyberSecurity #DecodeTheHacks #SaaS #OAuth
Повторяем попытку...
Доступные форматы для скачивания:
Скачать видео
-
Информация по загрузке:
