Recently, dozens of companies confirmed that they were impacted by a large-scale data breach at Salesforce. While notices vary by company, the incident resulted in an unauthorized party being able to access consumers’ sensitive information. As companies complete their investigations, they are sending out data breach notification letters to those individuals whose information was affected by the recent Salesforce data security incident.
If you received a data breach from any of the organizations listed below, it is essential that you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Salesforce data breach. For more information, please see our recent piece on the topic here.
What Caused the Data Breach Affecting Salesforce?
The Salesforce data breach was first reported last month, and more information is expected in the near future. However, Salesforce’s public trust advisory and independent threat-intel reports provide some important information on what led up to the breach. According to these sources, hackers stole login tokens connected to the Salesloft and Drift apps and used them to get into certain companies’ Salesforce accounts and access stored data.
Salesforce has said there is no indication its core platform was directly compromised. Meanwhile, a hacker collective linked to Scattered Spider, Lapsus$, and ShinyHunters is attempting to extort organizations and has claimed theft of up to one billion records from customer databases hosted in Salesforce.
After learning that sensitive consumer data was accessible to an unauthorized party, impacted organizations reviewed the compromised files to determine what information was leaked and which consumers were affected. While the breached information varies depending on the individual and the organization, it may include personal identifiers and contact details, account or loyalty numbers, and customer support information. In some cases, consumers’ Social Security numbers may have been impacted. Beginning in September, data breach letters were sent to individuals whose information was involved, listing the specific data elements for each person.
Companies Affected by the Salesforce Data Breach
Companies affected by the Salesforce breach fall into two categories: those that publicly disclosed they were impacted and those that have not yet confirmed any impact but appear on the hacker’s list of victims.
Those companies that have publicly confirmed they were affected include:
- Agility PR
- Avalara
- BeyondTrust
- Bugcrowd
- Cato Networks
- Cloudflare
- CyberArk
- Dynatrace
- Esker
- Fastly
- HackerOne
- Heap
- JFrog
- Lucid (Lucid Software)
- Megaport
- Nutanix
- PagerDuty
- Palo Alto Networks
- Pantheon
- Proofpoint
- Qualys
- Rubrik
- Sigma Computing
- SpyCloud
- Tanium
- Tenable
- Toast
- Workday
- Workiva
- Zscaler
The following companies have been listed as victims of the Salesforce breach by the hackers who orchestrated the cyberattack against Salesforce:
- 1-800Accountant
- Adidas
- Air France
- Albertsons
- Alexander McQueen
- ASICS
- Balenciaga
- Brioni
- CarMax
- Cartier
- Chanel
- Cisco
- Disney
- Engie Resources
- FedEx
- Fujifilm
- GAP (Gap Inc.)
- Google AdSense
- Gucci
- HBO Max
- Home Depot
- Houghton Mifflin Harcourt (HMH)
- IKEA
- Instructure (Canvas)
- Instacart
- Kering
- KFC
- Marriott
- McDonald’s
- Pandora
- Petco
- Puma
- Qantas Airways
- Republic Services
- Saks Fifth Avenue
- Stellantis
- Toyota
- TransUnion
- UPS
- Vietnam Airlines
Salesforce has publicly stated it won’t negotiate with or pay the hackers running this extortion campaign, while advising and supporting impacted customers. If you received a letter tied to this incident—whether from Salesforce or one of the affected companies—review it carefully and consider your legal options.
More Information About Salesforce
Salesforce is a U.S.-based cloud software company best known for its customer relationship management (CRM) platform and related data, marketing, and analytics tools used by enterprises worldwide. In 2025, Salesforce reported $37.9 billion in revenue and a workforce of approximately 76,000+ employees.
