Dark Reading reports that Salesforce customers with customized instances are yet again being warned that misconfigurations and programming errors while using the Apex programming language can expose their sales data.
Researchers at data security firm Varonis discovered customizations and add-ons to Apex code in organizations’ Salesforce instances that leaked data, allowed data corruption, or allowed an attacker to disrupt the business.
It said, “conducting a security assessment of all custom and third-party Apex software is critical.”