Salesforce responds to abnormal activity in Gainsight application: may have resulted in unauthorized access to customer data.

On November 20th local time, Salesforce stated that they are investigating "abnormal activity" related to the release of the Gainsight application, which may have led to a potential data breach for customers. In a brief statement, Salesforce mentioned that the Gainsight application, which is managed by customers themselves, "may have resulted in unauthorized access to some Salesforce customer data." The company stated that they have temporarily "revoked all active application permissions for Gainsight" and added that currently there is no evidence to suggest that this incident arose from vulnerabilities in the Salesforce platform.