Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
Troops (Acquired by Salesforce - July 2022)

Troops (Acquired by Salesforce - July 2022) Vendor Cyber Rating & Cyber Score

troops.ai
cbin
Add Your Compliance Badge
ISO 27001
SOC 2 Type 1
SOC 2 Type 2
PCI DSS
HIPAA
GDPR

At Troops, we’re on a mission to make business software that works for humans. Go-to-market technology is intended to help individuals be more productive and help businesses grow, but often comes with unintentional silos and seemingly endless administrative work. Troops captures and connects human intelligence, so managing your revenue-driving technology stack is as easy as sending a text message. By creating a seamless relationship between GTM systems and Slack or Microsoft Teams, Troops improves overall data quality, automates administrative work, enhances visibility, and enables collaboration. Our Slack and Microsoft Teams integrations work with Salesforce, Salesforce CPQ, Salesforce Service Cloud, Salesforce Pardot, HubSpot,


T A.I CyberSecurity Scoring

Incident Details
T
Company Information
Website:https://troops.ai
Employees number:18
Number of followers:4,531
NAICS:5112
Industry Type:Software Development
Homepage:troops.ai
Cyber Premium EstimationGet Supply Chain
T Risk Score (AI oriented)
Between 650 and 699
logo
TSoftware Development
Updated:
01/04/2026
693/1000
Weak
B
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
T Global Score (TPRM)
xxxx
logo
TSoftware Development
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

T
TWeak
Current Score
693B (WEAK)
01000
1 incidents
-64 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JUNE 2026
696Before Incident
MAY 2026
696Before Incident
APRIL 2026
696Before Incident
MARCH 2026
695Before Incident
FEBRUARY 2026
694Before Incident
JANUARY 2026
693Before Incident
DECEMBER 2025
687Before Incident
NOVEMBER 2025
686Before Incident
OCTOBER 2025
749Before Incident
Breach
23 Oct 2025T
Salesforce

Unauthorized Access to Salesforce Customer Data via Compromised Gainsight Applications

685After Incident
CRITICAL-64
TRO1793417112225
Salesforce disclosed a major security breach in November 2025, where threat actors linked to the ShinyHunters group exploited compromised OAuth tokens in Gainsight-published applications to gain unauthorized access to customer data. The attack, detected mid-November, exposed sensitive information from over 200 organizations using Gainsight’s Salesforce-integrated platform. Attackers conducted reconnaissance as early as October 23, 2025, and executed intensive unauthorized access between November 16–19, 2025, using VPNs (Mullvad, Surfshark, Proton, Tor), proxy services (IProxyShop, ProxySeller, NSocks), and custom user agents (e.g., Salesforce-Multi-Org-Fetcher/1.0) to evade detection.Salesforce disabled all Gainsight integrations, revoked affected tokens, and removed compromised apps from AppExchange. The breach did not originate from a Salesforce vulnerability but from third-party OAuth token misuse. Security firms Google Threat Intelligence Group and Mandiant assisted in tracking the attackers, who demonstrated high operational security by rotating VPNs and proxies. The incident mirrors recent attacks on Salesloft-Drift integrations, highlighting a trend of exploiting trusted SaaS integrations. Affected organizations were advised to audit connected apps, revoke suspicious tokens, and implement continuous monitoring.
INCIDENT DETAILS -
TYPE
Data BreachUnauthorized AccessThird-Party Compromise
MOTIVATION
Data TheftEspionagePotential Financial Gain (Dark Web Data Sales)
IMPACT
Data Compromised: Sensitive customer data from over 200 organizationsSalesforce customer instances accessed via Gainsight integrationGainsight-published applications on Salesforce AppExchangeDowntime: Gainsight-published applications disabled until further notice; customers unable to reconnectOperational Impact: Disruption of customer success platform integrations; revocation of affected OAuth tokens; removal of compromised applications from AppExchangePotential loss of trust in Salesforce/Gainsight securityAssociated risk due to ShinyHunters' high-profile breach historyIdentity Theft Risk: High (sensitive customer data exposed)
DATA BREACH
Customer dataPotentially PII (depending on Gainsight integration scope)Sensitivity Of Data: High (business-critical customer success data)Data Exfiltration: Likely (based on ShinyHunters' modus operandi)Personally Identifiable Information: Potential (not explicitly confirmed)
REFERENCES
Blog URLSource URL
SEPTEMBER 2025
749Before Incident
AUGUST 2025
749Before Incident
JULY 2025
749Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for T ?
?
What was T's A.I Rankiteo Cyber Score in May 2026 ?
?
What was T's A.I Rankiteo Cyber Score in April 2026 ?
?
What was T's A.I Rankiteo Cyber Score in March 2026 ?
?
What was T's A.I Rankiteo Cyber Score in February 2026 ?
?
What was T's A.I Rankiteo Cyber Score in January 2026 ?
?
What was T's A.I Rankiteo Cyber Score in December 2025 ?
?
What was T's A.I Rankiteo Cyber Score in November 2025 ?
?
What was T's A.I Rankiteo Cyber Score in October 2025 ?
?
What was T's A.I Rankiteo Cyber Score in September 2025 ?
?
What was T's A.I Rankiteo Cyber Score in August 2025 ?
?
What was T's A.I Rankiteo Cyber Score in July 2025 ?
?
What is the average per-incident point impact on T's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with T ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view T's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?