Salesforce confirmed on March 10, 2026, that a cybercrime group exploited a vulnerability via a customer misconfiguration. Translated for Marketing and Sales speak: someone set up a user setting incorrectly, which led to hackers finding a way to access important information in Salesforce.
The thing is, even though you’re not in IT, you really do need to pay attention to your company’s cybersecurity training. Marketing and Sales departments rely on SaaS platforms like Salesforce. Cyber and ransomware attacks like this can disrupt your day-to-day tasks – and also lead to wider issues affecting your whole company.
Cybersecurity Affects Your CRM and Lead Management Platforms
The Salesforce ransomware attack is a perfect example of how cybersecurity affects your CRM databases. In this instance, a known cybercrime group didn’t find a flaw in Salesforce’s software: rather, they took advantage of user permissions. This gave them access to CRM data for multiple organizations.
This access means they can share your valuable customer and lead information with other bad actors or your competitors. They can also keep you from accessing this information unless you pay them (aka, a Ransomware Attack).
…Your Business’s Operations…
Once a hacker is in your system, they can wreak all sorts of havoc. For example, an issue in the file transfer software MOVEit was exploited in 2023 and affected nearly 3,000 organizations worldwide. More recently, Iron Mountain reported a data breach on another file-sharing site that contained marketing materials and internal documents.
Ransomware attacks cost your company money (and hey, budgets are especially important in these times). Data exposures can lead to hefty fines.
Once in, hackers can potentially access other important Saas platforms or company information. They can access Gainsight or Hubspot and do damage there; they can bring down your website; they can let loose malware that brings down your organization’s internal systems.
They can even get into your HR department’s sensitive files and leak your own personal information (like your Social Security number).
…And Your Brand Reputation
As marketers, we often rely on having a good website, so trust me when I say that having it go down because of hackers or DDoS (distributed denial of service) attack is not a great look.
Hackers can also potentially gain access to your customers and clients, similarly affecting their operations.
Last, organizations in most of the world (including in the US, UK, Canada, and the EU) are required to publicly disclose cybersecurity incidents. You do not want to be the person who needs to write that press release.
So, What Can You Do About It?
First of all, you should follow marketing and sales ops best practices, especially for major platforms like HubSpot, Salesforce, Marketo, Sprout Social, etc.
Second, pay attention to your company’s cybersecurity training. Yes, it’s annoying, but it’s worth the time.
Third, work closely with your IT and InfoSec teams. Make sure they know what platforms you’re using, how they’re being used, and who has access. Follow their guidance for everything from platform setup to phishing attacks.
Last, in response to the current vulnerability, Salesforce posted a great article on how to ensure your instance is secure. Share this with your Salesforce admin and your IT/InfoSec team. The best practices within can also apply to any SaaS platforms.
Next up
Stay tuned for more on Marketing Ops, working with InfoSec teams, and Email compliance.
Want more direct guidance on Marketing and cybersecurity? I’m available for consulting and auditing – drop me a line!