Threat IntelligenceMar 10, 2026

Threat Actors Mass-Scan Salesforce Experience Cloud via Modified AuraInspector Tool

Salesforce reported increased threat actor activity targeting publicly accessible Experience Cloud sites using a modified version of the open-source AuraInspector tool. Attackers are exploiting misconfigurations in Experience Cloud guest user permissions to gain unauthorized access to sensitive data.

Read at source

Summary

Indicators of Compromise

malware — Modified AuraInspector