Salesforce warns customers over data leak cock-up

angry 1Salesforce – one of the biggest suppliers of on-demand marketing software in the world – has admitted that a programming cock-up could have exposed customer information to unauthorised parties, meaning that marketing data was either copied to the systems of other users or corrupted.
The software giant became aware of the issue – which it claims only affects a “subset” of Marketing Cloud customers that have signed up for Marketing Cloud Email Studio and Predictive Intelligence – on July 18 but insists it fixed the problem the same day.
However, the glitch actually lasted between early June to the middle of July, an alert on the company’s knowledge base explained, but has only just come to light.
Sony, Unilever, and Nestle are among the major brands which use the service.
In a statement, the company said: “During a Marketing Cloud release that was rolled out between June 4, 2018 and July 7, a code change was introduced that may have caused a small subset of REST API calls to improperly retrieve or write data from one customer’s account to another.
“The Salesforce Security team became aware of the issue on July 18 and an emergency release was deployed the same day, resolving the issue for all Marketing Cloud clients. We have no evidence of malicious behavior associated with this issue.”
Salesforce insists that all customers who may have been affected by the issue have been notified.

Related stories
Salesforce urges EU to probe $26bn LinkedIn sell-off
Virgin Media cosies up to customers with Salesforce
Millions of Instagram users hit by major hack attack
Data breach at games giant CeX hits 2m customers
Data breaches ‘hit shares, sales and growth for years’
20,000 Tesco Bank accounts raided in hack attack
Thousands warned ‘it could be you’ in Camelot hack
Takeaway fans hit where it hurts in Deliveroo breach
Adult site confirms 419m users have been exposed