Core Insights - Salesforce detected unusual activity involving applications published by Gainsight, which may have allowed unauthorized access to customer data [1][2] - The connection between Gainsight applications and Salesforce was disabled, preventing further access until further notice [3] - Gainsight is actively investigating the issue and is in close collaboration with Salesforce to monitor the situation [5][4] Company Actions - Salesforce disabled the connection to Gainsight applications on November 20, 2023, and will continue to provide updates to customers [3] - Gainsight confirmed that it is investigating the connection failures and will keep customers informed as new information arises [4][5] Industry Context - A report from Verizon indicated that 30% of data breaches in the year ending October 31, 2024, involved third parties, a significant increase from 15% the previous year [5] - Cybersecurity experts have predicted an increase in attacks on companies' third-party suppliers this year, highlighting a growing concern in the industry [7]

Salesforce says some of its customers’ data was accessed after Gainsight breach https://t.co/1uXgwJS9A9 ...

Core Insights - Salesforce is investigating a data breach involving certain customers' data that was compromised through applications published by Gainsight [1] - The breach is linked to Gainsight's external connection to Salesforce, with no indication of a vulnerability in the Salesforce platform itself [1] - Gainsight is conducting its own investigation into the Salesforce connection issue but has not confirmed a breach [2] Group 1: Breach Details - The hacking group ShinyHunters claims responsibility for the breach and has threatened to create a website to advertise the stolen data if Salesforce does not negotiate [5] - The hackers assert that they have stolen data from nearly a thousand companies, including sensitive information [6] - This breach is similar to a previous incident involving Salesloft, where hackers accessed connected Salesforce instances to steal sensitive data [7] Group 2: Impact on Companies - Victims of the Salesloft breach included major companies such as Allianz Life, Cloudflare, Google, and Qantas, indicating the potential scale of the impact [7] - Gainsight confirmed it was among the victims of the earlier Salesloft-linked breaches, raising questions about the origins of the current breach [8]

Core Insights - Schubert Jonckheer & Kolbe LLP is investigating a data breach involving unauthorized access to 1.2 million records from Doctor Alliance, a Texas-based healthcare technology firm [1][2] - The breach includes sensitive patient information such as names, dates of birth, addresses, phone numbers, email addresses, Medicare numbers, medical record numbers, diagnoses, treatment plans, medications, and provider information [2] - The cybercriminal claims to possess 353 gigabytes of data, which includes over 1.2 million files [2] Company Overview - Doctor Alliance provides billing services to various healthcare providers, including AccentCare and Intrepid [1] - The firm is currently facing potential legal actions due to the data breach, which may result in financial damages and changes to its cybersecurity practices [3][4] Legal Implications - Individuals whose personal information was compromised may be at risk of identity theft and could be entitled to monetary damages [3] - Schubert Jonckheer & Kolbe LLP is offering assistance to those affected by the breach, encouraging them to seek information about their legal rights [4]

Core Points - Schubert Jonckheer & Kolbe LLP is investigating a data breach involving EarnIn, a California-based financial services company that provides earned wage access [1][2] - The breach has affected 21,178 Texas residents, with potentially compromised information including names, addresses, dates of birth, and Social Security numbers [1][2] - EarnIn has not disclosed the date or scope of the breach and began notifying affected individuals around November 12, 2025, which may be in violation of state and federal laws [2] Company Information - EarnIn operates in the financial services sector, specifically focusing on earned wage access, allowing users to access their earned wages before payday [1] - The company has faced scrutiny due to the data breach, which raises concerns about its cybersecurity practices and compliance with legal obligations [2][3] Legal Implications - Individuals affected by the breach may be at risk of identity theft and could be entitled to damages and changes in EarnIn's cybersecurity practices [3] - Schubert Jonckheer & Kolbe LLP represents shareholders and consumers in class actions, indicating potential legal actions against EarnIn [4]

Core Points - Hyundai AutoEver America (HAEA) experienced a data breach that was discovered on or about March 1, 2025, affecting its information technology environment [3] - The unauthorized activity on HAEA's network occurred between February 22, 2025, and March 2, 2025, potentially exposing personal information such as names, Social Security numbers, and driver's license numbers [3] Company Overview - Hyundai AutoEver America is part of Hyundai Motor Group and provides full-cycle automotive IT consulting, management, and support services [2] Legal Investigation - Edelson Lechtzin LLP is investigating data privacy claims related to the HAEA incident and is considering a class action lawsuit for individuals whose sensitive personal data may have been compromised [1][4]

Core Insights - AppFolio, Inc. experienced a data breach due to a security incident involving its vendor Salesloft, leading to unauthorized access to sensitive personal information of tens of thousands of individuals [2][4]. Group 1: Data Breach Details - The breach was identified around August 22, 2025, when AppFolio became aware of the security incident affecting Salesloft [2]. - Cybercriminals infiltrated the inadequately secured network of Salesloft, gaining access to AppFolio's files [2]. - The investigation revealed that sensitive personal information, including names and Social Security numbers, was accessed and/or acquired [3][5]. Group 2: Legal Actions - Murphy Law Firm is investigating claims on behalf of individuals whose information was compromised and is evaluating legal options, including a potential class action lawsuit [1][4]. - The firm specializes in data breach class actions and has a track record of securing favorable recoveries for clients affected by such incidents [4].

Core Insights - Murphy Law Firm is investigating claims related to a data breach involving Brightstar Lottery Group and IGT Group, affecting personal and confidential information of individuals [1][4] - The data breach was identified around November 17, 2024, when suspicious activity was detected on the computer systems of Brightstar and IGT [2] - A forensic investigation revealed that cybercriminals accessed sensitive personal information of 103,879 individuals through an inadequately secured network [2] Data Breach Details - The exposed information includes names, Social Security numbers, financial information, health information, driver's license numbers, dates of birth, and contact information [5] - The breach poses risks of identity theft and the potential sale of personal information on the dark web [4] Legal Actions - Murphy Law Firm is evaluating legal options, including a potential class action lawsuit, to recover damages for affected individuals [3][4] - Individuals whose information was compromised are encouraged to join the class action lawsuit [1][4]

Discord announced that a third-party customer service provider was hacked, causing a data breach affecting some users who had contacted its support or Trust & Safety teams. Exposed data may include names, emails, chat logs, IP addresses, and limited payment details. Discord has revoked the vendor’s access and confirmed that the attackers did not directly compromise its internal systems.https://t.co/lTR7t9z1Pb ...

If a data breach or identity theft ever compromise your personal financial information, there are some immediate steps you should take to safeguard your account: https://t.co/SKTV1zU7ak https://t.co/67NPOkBfgn ...