FBI Alert: How UNC6040 & UNC6395 Are Targeting Salesforce and How to proactively prevent it

sforcemaximizer.com· September 24, 2025 ·Intermediate ·Admin ·1 min read

Summary

The FBI has issued an urgent alert about two cybercriminal groups, UNC6040 and UNC6395, targeting Salesforce platforms. It highlights the tactics these groups use to infiltrate Salesforce environments and offers proactive prevention strategies to safeguard data and operations. Salesforce teams should focus on strengthening security protocols and monitoring suspicious activities to mitigate risks.

Takeaways

Implement enhanced monitoring for suspicious login and API activity.
Regularly review and tighten Salesforce user permissions and access controls.
Apply multi-factor authentication for all Salesforce accounts.
Stay updated on FBI and security advisory alerts for emerging threats.
Educate users about phishing and social engineering tactics targeting Salesforce.

🚨 Immediate Action Required On September 12, 2025, the FBI issued FLASH alert FLASH-20250912-001 warning about two cybercriminal groups actively targeting Salesforce platforms. Major companies...

Salesforce SecurityUncategorized

Read Original Article Explore More on Apex Aide

FBI Alert: How UNC6040 & UNC6395 Are Targeting Salesforce and How to proactively prevent it

Related Articles

How to Secure your Agents & Data at Dreamforce 2025 for Admins and Architects

OT Cybersecurity Solutions in Canada: Keeping Industrial Operations Safe

Security 101: Profiles vs Permission Sets, FLS, and Sharing

Understanding Record Visibility

Retain Event Monitoring Event Log Files for Up to One Year