Only a limited number of Gainsight clients were noted by CEO Chuck Ganapathi to have had their data compromised following the breach of the customer management software firm's systems noted to have impacted Salesforce customer tokens, CyberScoop reports.Gainsight customers have been urged to review Salesforce logs to determine compromise amid an ongoing probe into the extent of the breach, which was reported by the Google Threat Intelligence Group to potentially have affected over 200 Salesforce instances. Implementation of IP restrictions for API calls has also been advised."We strongly recommend that you focus your investigation on the Salesforce logs that show authentication attempts and API calls originating from the Gainsight Connected App. These Salesforce-side logs are the authoritative source of information for identifying any anomalous access patterns," said Gainsight Chief Customer Officer Brent Krempges, who noted that its own logs have not been material in determining organizational risk from the attack.
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
Related Terms
Attack VectorYou can skip this ad in 5 seconds


