Is Salesforce Ransomeware Proof?
-
I see ransomware as such a threat, as does any sane IT person... such a great business model. Salesforce is completely SAAS. I've been dealing with it some. It's interesting and ... can be standoffish, hard to reach. I'm wondering if that barrier makes it protected from ransomware.
-
I see ransomware as such a threat, as does any sane IT person... such a great business model. Salesforce is completely SAAS. I've been dealing with it some. It's interesting and ... can be standoffish, hard to reach. I'm wondering if that barrier makes it protected from ransomware.
There is no such thing as proof. And there is also no point in asking Salesforce, I mean, they're probably pretty good, but no-one is perfect. Also: Security Questionnaire | CommitStrip[^] Just make sure you have off site backups. And also a backup plan.
Wrong is evil and must be defeated. - Jeff Ello
-
There is no such thing as proof. And there is also no point in asking Salesforce, I mean, they're probably pretty good, but no-one is perfect. Also: Security Questionnaire | CommitStrip[^] Just make sure you have off site backups. And also a backup plan.
Wrong is evil and must be defeated. - Jeff Ello
That's the thing. While my knowledge of Salesforce is not advanced, having your own offsite backups seems pretty near impossible. Just getting to the data is very hard. Since it is all browser based and a few other things, it might be fairly easy for the Salesforce folks to protect the data pretty good on their own. I don't know.
-
I see ransomware as such a threat, as does any sane IT person... such a great business model. Salesforce is completely SAAS. I've been dealing with it some. It's interesting and ... can be standoffish, hard to reach. I'm wondering if that barrier makes it protected from ransomware.
-
That's the point. Salesforce seems to have very limited access other than by browser. It may be designed that way with security in mind and it may allow a very high degree of protection. That is what I am curious about.
-
I see ransomware as such a threat, as does any sane IT person... such a great business model. Salesforce is completely SAAS. I've been dealing with it some. It's interesting and ... can be standoffish, hard to reach. I'm wondering if that barrier makes it protected from ransomware.
It's not "completely SAAS"; at some point the business has to interact with it and that's one weak link (like transferring infected image files).
"Before entering on an understanding, I have meditated for a long time, and have foreseen what might happen. It is not genius which reveals to me suddenly, secretly, what I have to say or to do in a circumstance unexpected by other people; it is reflection, it is meditation." - Napoleon I
-
It's not "completely SAAS"; at some point the business has to interact with it and that's one weak link (like transferring infected image files).
"Before entering on an understanding, I have meditated for a long time, and have foreseen what might happen. It is not genius which reveals to me suddenly, secretly, what I have to say or to do in a circumstance unexpected by other people; it is reflection, it is meditation." - Napoleon I
Not too shabby. I was sort of thinking that since all data enters through forms, it could be examined for safety. I didn't think of images that were uploaded. I don't think it is a large vector of attack, but it is one. Thanks
-
-
I see ransomware as such a threat, as does any sane IT person... such a great business model. Salesforce is completely SAAS. I've been dealing with it some. It's interesting and ... can be standoffish, hard to reach. I'm wondering if that barrier makes it protected from ransomware.
Michael Breeden wrote:
. It's interesting and ... can be standoffish, hard to reach. I'm wondering if that barrier makes it protected from ransomware.
Just because it's hard to reach doesn't make it ransomware-proof. Login credentials can still be compromised, tokens can be stolen, even two-factor authentication is proving to be more of an inconvenience for legitimate users than the bad guys (I don't have the details, but there was a discussion on this topic not too long ago on the [Security Now](https://twit.tv/shows/security-now) podcast). Why the worry about ransomware, specifically, when it comes to Salesforce?
-
Michael Breeden wrote:
. It's interesting and ... can be standoffish, hard to reach. I'm wondering if that barrier makes it protected from ransomware.
Just because it's hard to reach doesn't make it ransomware-proof. Login credentials can still be compromised, tokens can be stolen, even two-factor authentication is proving to be more of an inconvenience for legitimate users than the bad guys (I don't have the details, but there was a discussion on this topic not too long ago on the [Security Now](https://twit.tv/shows/security-now) podcast). Why the worry about ransomware, specifically, when it comes to Salesforce?
Quote:
Why the worry about ransomware, specifically, when it comes to Salesforce?
It's not that I'm worried about it. I'm curious if it can be attacked by it. I'm mostly a .Net developer, AWS, IIS, Data Center. All of those can be attacked by Ransomware or other malware. Even if a person had login credentials I suspect that Salesforce could not catch a ransomware bug. You might be able to delete the data or change user credentials, but I'm not sure you can infect it with much in the way of malware. That's what I am curious about... They said they couldn't get anyone with Salesforce experience so they just got a senior developer and hoped I'd figure it out :laugh:
-
Quote:
Why the worry about ransomware, specifically, when it comes to Salesforce?
It's not that I'm worried about it. I'm curious if it can be attacked by it. I'm mostly a .Net developer, AWS, IIS, Data Center. All of those can be attacked by Ransomware or other malware. Even if a person had login credentials I suspect that Salesforce could not catch a ransomware bug. You might be able to delete the data or change user credentials, but I'm not sure you can infect it with much in the way of malware. That's what I am curious about... They said they couldn't get anyone with Salesforce experience so they just got a senior developer and hoped I'd figure it out :laugh:
Michael Breeden wrote:
It's not that I'm worried about it. I'm curious if it can be attacked by it.
It can be attacked for sure, and I'm sure they have all sorts of mitigations in place...so the question is, how successful might an attack be? Anything that gets loose on their internal network will be able to encrypt whatever it's running under has read/write access to. How that might happen however is anyone's guess (or else it'd be fixed).