Web Scouter
Back to News
Security NewsMediumIncidentunauthorized access

Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool

UnknownMar 10, 2026(about 3 hours ago)

Threat actors are exploiting misconfigurations in Salesforce Experience Cloud sites to gain unauthorized access to sensitive data.

Salesforce has warned of an increase in threat actor activity that's aimed at exploiting misconfigurations in publicly accessible Experience Cloud sites by making use of a customized version of an open-source tool called AuraInspector. The activity, per the company, involves the exploitation of customers' overly permissive Experience Cloud guest user configurations to obtain access to sensitive

Related News

CVE-2026-3494 MariaDB Server Audit Plugin Comment Handling Bypass

Unknownabout 2 hours ago

Cylake Raises $45 Million to Secure Organizations Barred From Cloud

Unknownabout 3 hours ago

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

Unknownabout 4 hours ago

Get Personalized Alerts

Track vendors and receive alerts when security incidents affect your supply chain.

What We Monitor

Security Incidents

Data breaches, ransomware, and unauthorized access

Vulnerabilities

CVEs and vendor security advisories

Compliance Updates

Regulatory changes and certification news

Legal News

Privacy laws and enforcement actions

Vendor Directory

Browse our directory of SaaS vendors with security documentation and compliance information.