Salesforce Shield - gettectonic.com
salesforce government digital transformation
11Dec

Salesforce Drives Digital Transformation in Governmental Agencies

How Salesforce Drives Digital Transformation in Governmental Agencies in 2025 In the evolving digital age, government agencies face an increasing demand to modernize their services, improve citizen engagement, and deliver seamless digital experiences. These organizations require transformational technologies that not only streamline internal operations but also adopt a citizen-first approach. Salesforce emerges as a key enabler of this transformation, empowering government agencies with tools to build unified, transparent platforms while fostering efficiency and enhancing citizen interaction. Leveraging Salesforce Commerce Cloud and Salesforce CRM, agencies can overcome common challenges and embrace a more digitally enabled public sector. Let’s explore the pressing challenges government agencies face and how Salesforce provides practical, scalable solutions to address them. 1. Citizen Engagement and Accessibility: Bridging the Digital Divide Challenge: Citizens now expect government services to be as user-friendly and accessible as private-sector experiences. Lengthy response times, disconnected platforms, and inconsistent experiences across digital and physical touchpoints erode trust and hinder accessibility. Solution: 2. Data Security and Compliance: Safeguarding Citizen Trust Challenge: Handling sensitive citizen data requires robust security and strict compliance with regulations like GDPR, CCPA, and other local data privacy laws. Solution: 3. Legacy Systems and Integration: Modernizing Infrastructure Challenge: Legacy systems often limit agility, making it difficult to integrate new technologies and slowing the pace of digital transformation. Solution: 4. Budget Constraints: Implementing Cost-Effective Solutions Challenge: Budget limitations often hinder the adoption of new technologies, especially those requiring significant upfront investment. Solution: 5. Efficient Service Delivery: Streamlining Workflows Challenge: Paper-heavy, bureaucratic processes delay service delivery and frustrate both staff and citizens. Solution: 6. Data-Driven Decision-Making: Analytics for Informed Policies Challenge: Generating actionable insights from vast amounts of data is challenging, affecting policymaking and government efficiency. Solution: 7. Enhancing Collaboration: A Unified Workforce Challenge: Siloed departments hinder collaboration and reduce overall productivity, making it difficult to provide cohesive citizen services. Solution: 8. Real-Time Responsiveness: Meeting Citizen Expectations Challenge: Citizens expect real-time support and proactive communication from government agencies. Delays lead to frustration and diminished trust. Solution: Transforming Government Services with Salesforce Salesforce Commerce Cloud and Salesforce CRM are tailored to address public sector challenges in 2025. By leveraging these tools, government agencies can: Salesforce offers a clear path to a digitally empowered future, enabling government agencies to meet today’s demands while laying the foundation for innovation. Ready to Transform?If your agency is ready to embrace digital transformation, streamline operations, and enhance citizen services, Salesforce can help you get there. Let’s discuss how Salesforce solutions, supported by expert implementation, can drive meaningful change for your organization and your citizens. Like1 Related Posts Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent figure in cloud computing, has finalized a deal to acquire Jigsaw, a wiki-style business contact database, for Read more Health Cloud Brings Healthcare Transformation Following swiftly after last week’s successful launch of Financial Services Cloud, Salesforce has announced the second installment in its series Read more

Read More
December 11, 2024in Data, Laws, Mulesoft, Public Sector Solutions, Salesforce, Salesforce Commerce Cloud, Salesforce Government Cloud, Salesforce Service Cloud, Salesforce Shield0 Comments
Cybersecurity
05Nov

Cybersecurity Regulations for Hospitals

Beyond the 72-hour reporting requirement, which took effect on October 2, 2024, hospitals must implement key cybersecurity measures, such as multifactor authentication and a robust incident response plan, by October 2025. These regulations currently apply only to general hospitals, excluding other healthcare facilities like nursing homes and diagnostic centers.

Read More
November 5, 2024in Data, Salesforce Health and Life Sciences Solutions, Salesforce Health Cloud, Salesforce Optimization, Salesforce Shield, Technology
Salesforce Success Story
14Oct

Case Study: Children’s Hospital Use Cases

In need of help to implement requisite configuration updates to establish a usable data model for data segmentation that supports best practices utilization of Marketing Cloud features including Contact Builder, Email Studio and Journey Builder.

Read More
October 14, 2024in Data, Google, Life Sciences Cloud, Salesforce, Salesforce Development Services, Salesforce Health and Life Sciences Solutions, Salesforce Health Cloud, Salesforce Implementation Services, Salesforce Marketing Cloud, Salesforce Shield, Salesforce Success Stories
Data Governance for the AI Enterprise
27Sep

Data Governance for the AI Enterprise

Salesforce Introduces Data Governance for the AI Enterprise Salesforce this month unveiled Data Governance for the AI Enterprise, a comprehensive suite of tools designed to help IT teams navigate the growing regulatory landscape surrounding generative AI. Why it matters: As governments worldwide work to implement stricter rules governing the use of AI, like the EU’s AI Act, data governance has become a top priority for businesses. According to Salesforce research, ensuring robust data security and governance is now the leading concern for Chief Data Officers. Cloud Data Security & Privacy SolutionsExplore the new suite: How Salesforce’s Data Governance for the AI Enterprise Can Help: Salesforce’s latest solution is designed to help companies proactively address both current and future regulations. Built on the Salesforce platform and integrated with Data Cloud, the suite offers advanced data management, enhanced security, and privacy features: Salesforce’s perspective:“Data governance is a top priority for every organization deploying AI, especially given the complexity of the regulatory landscape,” said Alice Steinglass, EVP and GM for Salesforce Platform. “Our Data Governance for the AI Enterprise suite equips businesses to tackle these challenges.” Customer success story:“Data encryption is essential to our data governance strategy,” said James Ferguson, Principal Security Architect at AWS. “With Salesforce’s flexible encryption solutions, we can maintain top-tier security while delivering innovative customer experiences.” Availability: For Data Cloud users: Like Related Posts Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent figure in cloud computing, has finalized a deal to acquire Jigsaw, a wiki-style business contact database, for Read more Health Cloud Brings Healthcare Transformation Following swiftly after last week’s successful launch of Financial Services Cloud, Salesforce has announced the second installment in its series Read more

Read More
September 27, 2024in Data, Enterprise, Generative AI, Hyperforce, Salesforce, Salesforce Shield
Liberty Bank and Salesforce
14Sep

Liberty Bank and Salesforce

Liberty Bank, based in Middletown, Connecticut, announced on September 5th an expanded partnership with Salesforce, the world’s leading AI-powered CRM platform, to enhance its customer engagement efforts. Liberty Bank and Salesforce. By integrating Salesforce’s Financial Services Cloud, Marketing Cloud, MuleSoft, and Salesforce Shield, Liberty Bank aims to deliver more personalized, efficient, and enriched services. This strategic investment will further position Liberty Bank as a leader in customer satisfaction and loyalty within the community banking sector. “We set out to find a strategic partner that truly understands the unique nature of banking and puts the customer first,” said David W. Glidden, Liberty Bank President and CEO. “As we continue our mission to ‘Build the Community Bank of the Future,’ having the best partners is crucial to elevating our customer experience. With Salesforce’s innovative CRM solutions, we’re investing in the future to meet the evolving needs of our customers, team members, and communities, and to exceed their expectations.” Salesforce’s platform will enable Liberty Bank to streamline operations and gain deeper insights into customers’ financial journeys, ensuring a seamless and personalized banking experience. The Financial Services Cloud offers tools specifically tailored to the banking industry, allowing for faster time-to-value. Set to roll out next year, this transformation will allow Liberty Bank to prioritize customer financial goals while maintaining a high level of service and support. “Banks of all sizes are under pressure to innovate and deliver more personalized experiences. By leveraging CRM, data, and AI, Liberty Bank will gain a comprehensive view of its customers, enabling its teams to build stronger relationships and improve overall productivity.”Greg Jacobi, VP & GM of Banking and Lending at Salesforce. About Liberty Bank Founded in 1825, Liberty Bank is the nation’s oldest and largest independent mutual bank. With nearly $8 billion in assets, Liberty operates 56 branches across Connecticut and two in Massachusetts. It provides a full range of services, including consumer and commercial banking, cash management, home mortgages, business loans, insurance, and investment services. The bank has been named a ‘Top Workplace’ by the Hartford Courant every year since 2012 and recognized as a Best-In-State Bank in Connecticut by Forbes in 2021, 2022, and 2023. For more information, visit www.liberty-bank.com. Liberty Bank and Salesforce. Interested in discussing Salesforce for your financial institution? Contact Tectonic today. Like Related Posts Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent figure in cloud computing, has finalized a deal to acquire Jigsaw, a wiki-style business contact database, for Read more Health Cloud Brings Healthcare Transformation Following swiftly after last week’s successful launch of Financial Services Cloud, Salesforce has announced the second installment in its series Read more

Read More
September 14, 2024in Mulesoft, Salesforce Financial Services Solutions, Salesforce Implementation Services, Salesforce Managed Services, Salesforce Optimization, Salesforce Shield
Adopting Salesforce Security Policies
07Sep

Adopting Salesforce Security Policies

Data breaches reached an all-time high in 2023, affecting more than 234 million individuals, and there’s no sign of the trend slowing down. At the center of this challenge is how organizations allocate resources to safeguard customer data. One of the most critical systems for managing this data is CRM platforms like Salesforce, used by over 150,000 U.S. businesses. However, security blind spots within Salesforce continue to pose significant risks. To address these concerns, the National Institute of Standards and Technology (NIST) offers a strategic framework for Salesforce security teams. In February 2024, NIST released Version 2.0 of its Cybersecurity Framework (CSF), marking the first major update in a decade. Key improvements include the introduction of a new “Govern” function, streamlining of categories to simplify usability, and updates to the “Respond” function to enhance incident management. This framework now applies across all industries, not just critical infrastructure. For Salesforce security leaders, these changes will significantly affect how they manage security, from aligning Salesforce practices with enterprise risk strategies to strengthening oversight of third-party apps. Here’s how these updates will influence Salesforce security going forward. What is the NIST Cybersecurity Framework 2.0? The NIST Cybersecurity Framework, first launched in 2014, was developed after an executive order by President Obama, aiming to provide a standardized set of guidelines to improve cybersecurity across critical infrastructure. The framework’s objectives include: The newly updated NIST CSF 2.0, released in 2024, expands on the original framework, providing organizations with structured, yet flexible, guidance for managing cybersecurity risks. It revolves around three core components: the CSF Core, CSF Profiles, and CSF Tiers. Key Components of NIST Cybersecurity Framework 2.0 These components help organizations understand, assess, and improve their cybersecurity posture, forming the basis for risk-informed strategies that align with organizational needs and the evolving threat landscape. Key Updates in the NIST Cybersecurity Framework 2.0 and Their Impact on Salesforce Security The 2024 updates to NIST CSF offer insights that Salesforce security leaders can use to align their strategies with evolving cybersecurity risks. Implementation Strategies for Salesforce Security Leaders To incorporate CSF 2.0 into Salesforce security operations, leaders should: Conclusion: Embracing NIST CSF 2.0 to Strengthen Salesforce Security The 2024 NIST Cybersecurity Framework updates offer crucial insights for Salesforce security leaders. By adopting these practices, organizations can enhance data protection, strengthen incident response capabilities, and ensure business continuity—critical for those relying on Salesforce for managing sensitive customer data. Like Related Posts Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent figure in cloud computing, has finalized a deal to acquire Jigsaw, a wiki-style business contact database, for Read more Health Cloud Brings Healthcare Transformation Following swiftly after last week’s successful launch of Financial Services Cloud, Salesforce has announced the second installment in its series Read more

Read More
September 7, 2024in Data, Enterprise, Salesforce, Salesforce Shield, Technology
Healthcare IT and CrowdStrike
02Sep

Healthcare IT and CrowdStrike

Learning from the CrowdStrike Outage: Enhancing Resilience and Incident Response Overview: In the wake of the CrowdStrike outage, businesses around the globe are focusing on restoring business continuity and bolstering their resilience for future incidents. On Friday, July 19, 2024, a faulty content update triggered crashes across approximately 8.5 million Windows devices, displaying the infamous blue screen of death. This affected a range of sectors, including hospitals and airlines. Although less than 1% of all Windows machines were impacted, the outage caused significant disruptions, particularly in healthcare. For instance, Mass General Brigham hospitals and clinics canceled all non-urgent visits on the day of the outage. Other major healthcare providers, such as Memorial Sloan Kettering Cancer Center, Cleveland Clinic, and Mount Sinai, also faced operational challenges. This incident was not a result of a cyberattack but rather a defective content configuration update to CrowdStrike’s Falcon threat detection platform. According to the company’s preliminary post-incident review, a bug in the content validator allowed the faulty update to pass through validation despite containing errors. “What we’re hearing is that the recovery is well underway. Most healthcare organizations I’ve been talking to are back up and running,” said David Finn, Executive Vice President of Governance, Risk, and Compliance at First Health Advisory, in an interview with TechTarget Editorial. “The scope was much smaller than some of the other issues we’ve seen in the recent past in healthcare, but the response was healthy. Still, I think there are a lot of lessons learned.” Health IT security experts suggest that this incident can serve as a valuable learning opportunity for improving future response and recovery strategies. Planning for the Inevitable “The bad thing is always going to happen,” Finn stated, drawing on his 40 years of experience in health IT security and privacy. “The trick is to plan for it, be prepared, and ensure your ability to recover and remain resilient.” Whether it’s a large-scale cyberattack, like the one at Change Healthcare in February 2024, or a global IT outage without malicious origins, healthcare organizations of all sizes must be ready to respond to a variety of incidents that could disrupt critical systems. Finn emphasized the importance of proactive due diligence and thorough incident response planning, particularly in identifying and addressing single points of failure. Preparing for potential operational challenges in advance can make all the difference when an incident actually occurs. “We have to change the way we think about deploying this stuff,” Finn added. “Software, fortunately or not, is written by human beings, and human beings will always make mistakes. It’s our job to protect against those kinds of mistakes.” The Importance of Resilience Cyber-resilience is essential for enabling organizations to quickly recover and restore operations. By understanding that incidents like the CrowdStrike outage are bound to occur, organizations can focus on building resilience to effectively manage such events. Finn highlighted the need for resilience and redundancy in response to incidents like the CrowdStrike outage. “I still trust CrowdStrike, but that trust doesn’t mean they’re going to be perfect every time,” Finn noted. Healthcare organizations responded quickly to the incident, despite the disruptions it caused. For instance, Mass General Brigham activated its incident command to manage its response, keeping clinics and emergency departments open for urgent cases. By Monday, July 22, they had resumed scheduled appointments and procedures. According to Erik Weinick, co-head of the privacy and cybersecurity practice at New York-based law firm Otterbourg, the CrowdStrike incident underscores the need for organizations to reassess their legal and technical risk protocols. “Although initial reports indicate that the incident was an accident, not an attack, organizations should use this incident as motivation to conduct information audits, penetration testing, update system mapping and software, including security patches, and remind users about best security practices like multifactor authentication and frequently changing difficult-to-guess passwords,” Weinick said. Essentially, organizations can leverage incidents like the CrowdStrike outage to strengthen their risk management strategies and enhance their cyber-resilience. Third-Party Risk Management Challenges Even with strict security controls in place, organizations are still vulnerable to risks from third-party vendors. As the interconnectedness of healthcare systems grows, so does the potential for third-party risks. The global IT outage highlighted the importance of third-party risk management and the associated challenges. In 2023 and 2022, some of the largest healthcare data breaches were caused by third-party vendors. “People probably did a lot of risk analysis around CrowdStrike, but I’ll bet no one ever asked what tools they use to produce their software,” Finn speculated. “Until we get standards in place for software development and certifications for software sold to critical infrastructure sectors, we’re going to have to dig a little deeper.” In response to the incident, CrowdStrike announced plans to enhance its software resilience and testing processes, including adding more validation checks to its Content Validator for Rapid Response Content to prevent the deployment of faulty content. The company also plans to conduct multiple independent third-party security code reviews to prevent similar incidents in the future. “On the legal front, organizations should review their vendor agreements to understand their obligations regarding privacy and data security, who their partners are working with, and what limitations exist on liability for incidents like the CrowdStrike outage,” Weinick advised. He also recommended checking business disruption insurance coverage and conducting tabletop exercises to rehearse business continuity and recovery procedures in the event of a systems outage. Key Takeaways The CrowdStrike outage reinforced essential IT and security considerations for organizations worldwide, particularly in the areas of resilience, third-party risk management, and incident response and recovery. By learning from this event, organizations can better prepare for future challenges and improve their overall cyber-resilience. Like Related Posts Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent

Read More
September 2, 2024in Salesforce Health and Life Sciences Solutions, Salesforce Shield
Winter 25 Release Developer Enhancements
25Aug

Winter 25 Release Developer Enhancements

Developer Enhancements Salesforce Flow Enhancements Flow Orchestrator Enhancements How to Access and Use Key Salesforce Features View the Automation Lightning App: Manage Steps in an Orchestration Stage: Customize the Flow Orchestration Work Guide Component: Customize SMS One-Time Password Delivery for Experience Cloud Sites: Control Authenticated Callouts Permissions: Improve Data Transmission Speed and Security with TLS 1.3: Enable LWC Stacked Modals: Additional Enhancements: Salesforce Mobile App Enhancements Resolve Sync Issues with Offline Drafts: Access Hyperlinks in Enhanced Reports: Messaging in the Salesforce Mobile App: Seller-Focused Sales Mobile Experience: Stay Informed About Upcoming Releases: Check Out Resources: Like Related Posts Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent figure in cloud computing, has finalized a deal to acquire Jigsaw, a wiki-style business contact database, for Read more Health Cloud Brings Healthcare Transformation Following swiftly after last week’s successful launch of Financial Services Cloud, Salesforce has announced the second installment in its series Read more

Read More
August 25, 2024in Salesforce Shield
What is Salesforce Health Cloud
11Jul

Explore Salesforce Health Cloud

Empower Your Healthcare Team with Salesforce Health Cloud Equip your healthcare team with comprehensive 360-degree views that help connect and engage every patient, member, employee, and partner. Explore Salesforce Health Cloud Explore Health Cloud Understanding the capabilities of this platform is the first step to transforming your organization’s patient management. Let’s explore what Health Cloud offers to various types of healthcare organizations. Introducing Salesforce Health Cloud: A CRM Solution for Patient Management Over 600 companies, including industry leaders like Lilly, Pacific Clinics, United Healthcare, Progyny, Stanley Healthcare, and Humana, trust Salesforce Health Cloud for their patient management needs. As the healthcare industry rapidly evolves, effective patient information management is essential. This insight looks into Salesforce Health Cloud’s capabilities, features, integration options, and benefits, including its security architecture. What is Health Cloud? Salesforce Health Cloud is a cloud-based technology designed specifically for the healthcare industry. It centralizes patient information, giving healthcare professionals a complete view of patient records, enabling more effective treatments and better patient care. Key Capabilities of Salesforce Health Cloud Salesforce Health Cloud is a robust platform offering key capabilities such as: Salesforce in the Healthcare Industry Salesforce is increasingly popular among healthcare organizations for several reasons: Salesforce Health Platform Features Salesforce Health Cloud offers three main sets of features: Salesforce Health Cloud Architecture The architecture of Salesforce Health Cloud includes: Salesforce Health Cloud Security Salesforce Health Cloud is designed to securely manage healthcare data, featuring: Revolutionizing Healthcare Delivery with Salesforce Health Cloud Salesforce Health Cloud is designed for healthcare organizations to automate processes and provide personalized patient care. Since its launch in 2016, Health Cloud has evolved to address the complexities of the healthcare industry, including the introduction of Customer 360 for Health, an AI-driven healthcare solution. Why Choose Salesforce Health Cloud? Salesforce Health Cloud connects healthcare teams to ensure that patients receive the right care, supported by multi-layered security to protect sensitive patient data. It integrates clinical and non-clinical patient data, streamlining workflows and enhancing patient satisfaction. Top Features of Salesforce Health Cloud Key features include Patient 360, Care Plans, Care Coordination, Health Timeline, and Einstein Analytics for Healthcare, among others. Salesforce has also introduced AI-powered innovations under the Patient 360 for Health initiative, enhancing patient care and operational efficiency. Integration with MuleSoft Salesforce Health Cloud’s integration with MuleSoft allows organizations to connect with existing healthcare systems, ensuring accurate and up-to-date patient information, unlocking the full potential of their data, and improving decision-making. Conclusion Salesforce Health Cloud is more than just a platform—it’s a comprehensive solution for managing doctor-patient interactions, recordkeeping, and delivering personalized care. By leveraging Health Cloud, healthcare organizations can transform patient experiences, streamline processes, and ensure data security and compliance, positioning themselves for a brighter future in healthcare. Like Related Posts Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent figure in cloud computing, has finalized a deal to acquire Jigsaw, a wiki-style business contact database, for Read more Health Cloud Brings Healthcare Transformation Following swiftly after last week’s successful launch of Financial Services Cloud, Salesforce has announced the second installment in its series Read more

Read More
July 11, 2024in Mulesoft, Salesforce Health Cloud, Salesforce Marketing Cloud, Salesforce Shield
Hubspot Hacked
01Jul

Hubspot Hacked

HubSpot recently disclosed a “security incident” where unauthorized access was attempted on several customer accounts. HubSpot is an American software company that provides tools for inbound marketing, sales, and customer service. It was founded in 2006 by Brian Halligan and Dharmesh Shah, and is today best-known for its all-in-one growth platform that helps businesses attract visitors, convert leads, and close customers.. The CRM company detected the incident on June 22, though it was publicly acknowledged six days later by Alyssa Robinson, Chief Information Security Officer at HubSpot. HubSpot seems to have suffered a data breach, but claims to have everything in hand – for now. Robinson stated that the incident involved bad actors targeting a limited number of HubSpot customers, aiming to gain unauthorized access to their accounts. Upon detection, HubSpot promptly activated its incident response procedures and has since been in contact with affected customers, taking necessary steps to revoke unauthorized access and safeguard customer data. HubSpot Hacked With how the statement was worded, it would seem that the attackers, whoever they are, tried to break into the account – but not necessarily succeeded. Still, the company proceeded with the usual practice in case of a cyberattack: “HubSpot triggered our incident response procedures, and since June 22 we have been contacting impacted customers and taking necessary steps to revoke the unauthorized access and protect our customers and their data,” said Robinson. As of Friday, June 28, HubSpot has not disclosed any communication from the hacking group, nor has it specified the full scope of the incident or the exact number of impacted customers. Despite having over 100,000 paying customers and achieving significant financial milestones, such as breaking the $1 billion annual recurring revenue (ARR) mark, HubSpot’s stock price remained stable amid the news, which surfaced through TechCrunch. Ironically, this incident follows HubSpot’s recent announcement of new data protection capabilities for its Smart CRM users. However, it underscores the ongoing challenges faced by major enterprise tech providers regarding cybersecurity. HubSpot says fewer than 50 customer accounts were victims of a breach in late June, all impacted customers were notified and all has been quiet since the initial incident. As of May 2024, HubSpot had more than 216,000 customers, so an incident that impacts fewer than 50 doesn’t seem like a big deal, unless of course you’re one of the accounts involved. What we know:  The company is not releasing many details about the incident other than the basic facts. The company said in a June 28 release that it detected a security incident on June 22, 2004, where bad actors were attempting to gain access to customer accounts without authorization. HubSpot’s detection of the breach triggered its incident response procedures and the company notified impacted accounts. On June 28 and again on July 1, 2024, the company reported no further signs of a problem. What’s not known at this time is whether the attack was targeting a specific group of HubSpot customers. Back in March 2022, fewer than 30 HubSpot customers were impacted by a data breach, but all of the impacted customers were in the cryptocurrency business. HubSpot joins a growing list of enterprise tech firms experiencing cybersecurity incidents. While recent arrests, such as that of the alleged ringleader behind attacks on Twilio, LastPass, and Mailchimp, offer some hope, cybersecurity threats continue to evolve with the proliferation of digital devices and AI accessibility. This trend poses new risks, including the misuse of AI technologies like deepfakes, as highlighted by concerns raised by organizations like OpenAI. As businesses expand their digital presence and adopt new technologies, they must remain vigilant against evolving cybersecurity threats to protect sensitive information and maintain customer trust. HubSpot is an American software company that provides tools for inbound marketing, sales, and customer service. It was founded in 2006 and is today best-known for its all-in-one growth platform that helps businesses attract visitors, convert leads, and close customers. Impact for Marketers As marketers, our martech stacks are heavily reliant on cloud-based SaaS applications (like HubSpot) and cloud-based data storage from vendors like Amazon’s AWS and Google Cloud. Even on-premise applications and data are a security risk. The applications running in the cloud and the data stored there are at arm’s length from your data security professionals. More than 80% of the data breaches recorded in 2023 involved data stored in the cloud, according to the Harvard Business Review. Big breaches impacting millions of consumers get a great deal of attention, like those that struck Sony or Target in years past. But smaller, targeted attacks can be devastating to the businesses that have their data exposed, though they fly under the radar of the national press. The number of reported data breaches increased 78% from 2022 to 2023. The cost of the average breach surpassed $4 million in 2023 and is up 15% since 2020. How secure is HubSpot? Is my data secure with HubSpot? All communications between a web client and HubSpot servers are protected using TLS (1.0, 1.1, 1.2) protocol encryption using 2048 bit keys. We also provide customers with the ability to enable Two-Phase Authentication (2FA) to prevent unauthorized use of their portals. Another July Hack One of the most significant data leaks in recent history is reported to have occurred on July 4. The leak, dubbed RockYou2024 by the original poster, “ObamaCare”, on a leading hacking forum, compiled 9,948,575,739 unique passwords into plain text. This means close to ten billion passwords were leaked. That said, the RockYou2024 is primarily a compilation of all previous password leaks and is built on a prior RockYou2021 compilation of 8.4 billion passwords. That means between RockYou2021 and RockYou2024, about 1.5 billion passwords were added to the list. Further, according to the hacker, at least a few of these passwords were cracked using RTX 4090, a tactic that was warned about earlier. According to Cybernews researchers, “In its essence, the RockYou2024 leak is a compilation of real-world passwords used by individuals all over the world. Revealing that

Read More
July 1, 2024in Salesforce Shield
Education Cloud AI Innovations
14May

Education Cloud AI Innovations

Salesforce AI Innovations: Empowering Student Success and Faculty Efficiency Salesforce is introducing new Education Cloud AI Innovations, AI-powered tools designed to streamline the educational journey, enabling students to chart clear paths to graduation, translate their coursework into resume-ready skills, and connect with mentors who can guide them toward their career goals. Enhancing Faculty and Staff Efficiency with AI New generative AI capabilities are set to automate time-consuming tasks for faculty and staff, allowing them to focus on what matters most—driving student success. Personalizing Student Experiences with AI Institutions like the University of Nevada Las Vegas and Texas Tech are leveraging Salesforce for Education to create personalized student experiences and improve staff efficiency through AI-driven solutions. Salesforce Introduces AI-Powered Student Success Tools for Education Cloud Today, Salesforce unveiled cutting-edge AI tools for Education Cloud, including Intelligent Degree Planning and Skills Generator. These innovations are designed to help institutions craft personalized graduation pathways, translate coursework into tangible skills, and facilitate impactful mentorship programs. Additionally, Salesforce introduced Data Cloud for Education and Einstein Copilot Recruitment & Admissions Actions. These tools will enable institutions to automate routine tasks, enhance recruitment and enrollment processes, and bolster student support. Why It Matters Education professionals face the highest burnout rates across industries, and students are feeling the impact—only 11% of college students believe they are workforce-ready. As the education sector approaches an enrollment cliff, confidence in the value of a college degree is declining, and educators are leaving the profession in significant numbers. Schools must find ways to reduce staff workload while improving student experiences and outcomes. Explore Education Cloud Elevate the educational experience with the #1 AI CRM for learner and institution success. DIVE IN AI Innovation for Lifelong Student Success The new AI capabilities for Education Cloud, built on Salesforce’s Einstein 1 Platform, will help higher education and K-12 institutions unlock the power of their data to deliver trusted AI solutions. These innovations are designed to improve staff efficiency while enhancing student experiences and learning outcomes. Key features include: AI in Action for Faculty and Staff Salesforce is delivering new AI and data tools to automate tasks related to recruitment, enrollment, and student experience management. New features include: With these industry-specific AI and data tools, Education Cloud is poised to help K-12 and higher education institutions offer more individualized support to every student while increasing operational efficiency and reducing staff burnout. The Salesforce Perspective “Every institution wants to provide the best possible experiences for their students and staff. With industry-specific AI and data tools, Education Cloud will help K-12 and higher ed institutions offer more personalized support to every student while increasing efficiency and helping to reduce staff burnout. This will free educators and staff to focus on improving student outcomes, such as career readiness, well-being, and graduation rates.”— Bala Subramanian, VP & GM of Education Like Related Posts Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent figure in cloud computing, has finalized a deal to acquire Jigsaw, a wiki-style business contact database, for Read more Health Cloud Brings Healthcare Transformation Following swiftly after last week’s successful launch of Financial Services Cloud, Salesforce has announced the second installment in its series Read more

Read More
May 14, 2024in Einstein 1 Platform, Generative AI, Salesforce Education Cloud, Salesforce Education Solutions, Salesforce Einstein, Salesforce Managed Services, Salesforce Optimization, Salesforce Shield
Security Identity and Privacy Summer 24 Release Notes
26Apr

Security Identity and Privacy Summer 24 Release Notes

External Client App Manager, OAuth 2.0 token exchange handlers, and Event Log File Browser are each now available in Setup. Also, external client apps now support a bunch of new OAuth flows. Give users access to manage custom domains with a new, more targeted user permission. Create uninterrupted user experiences across Salesforce and custom interfaces with the new Single-Access UI Bridge API. Access your Data Cloud encryption policy status from the Security Center Encryption Policy metric. Scratch orgs on Salesforce Edge Network use partitioned domains. And Android mobile connected apps now require the Admin SDK private key and project ID from a Google Firebase project. Security Identity and Privacy Summer 24 Release Notes. Like Related Posts Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent figure in cloud computing, has finalized a deal to acquire Jigsaw, a wiki-style business contact database, for Read more Health Cloud Brings Healthcare Transformation Following swiftly after last week’s successful launch of Financial Services Cloud, Salesforce has announced the second installment in its series Read more

Read More
April 26, 2024in Salesforce, Salesforce Optimization, Salesforce Shield
Salesforce Success Story
21Mar

Case Study: Healthcare Health Cloud Marketing Cloud Large Childrens Hospital

Large children’s hospital needs a usable data model and enhanced security to deliver excellent patient outcomes. Healthcare Health Cloud Marketing Cloud Large Childrens Hospital. Industry: Healthcare Client is a large children’s hospital with pediatric healthcare offering acute care. Problem: Implemented : Our solution? Results: In order to improve operations, provide physician-facing services, and move data—including PHI and PII—to the cloud, we have assisted healthcare providers in overcoming these obstacles. Salesforce offers all-inclusive solutions specifically designed to meet the demands of payers (insurance companies) and providers (healthcare organizations). Better health outcomes, more operational effectiveness, and increased patient engagement are the goals of these solutions. Salesforce solutions for the health and life sciences are tailored to the particular requirements of the medical industry. Salesforce offers digital transformation technology for health and life sciences industries. If you are considering a Salesforce healthcare implementation, contact Tectonic today. Like2 Related Posts Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent figure in cloud computing, has finalized a deal to acquire Jigsaw, a wiki-style business contact database, for Read more Health Cloud Brings Healthcare Transformation Following swiftly after last week’s successful launch of Financial Services Cloud, Salesforce has announced the second installment in its series Read more

Read More
March 21, 2024in Salesforce, Salesforce Health and Life Sciences Solutions, Salesforce Health Cloud, Salesforce Marketing Cloud, Salesforce Sales Cloud, Salesforce Shield, Salesforce Success Stories
Salesforce Shield Data Monitoring and Encryption
29Nov

Salesforce Shield Encryption

Salesforce Uses a symmetric encryption key to encrypt the customer data that it stores. (The symmetric encryption used isAES with 256-bit keys using CBC mode, PKCS5 padding, and random initialization vector (IV).) Salesforce Shield Encryption works in this way. 1) There are three channels to enter data into Salesforce.com. One: user via desktop using a browser, two: users via mobile device or three: a system making an API call directly into Salesforce. 2) The Application servers in the salesforce data centers serve as a gateway to intercepting requests coming in determining which data elements should be encrypted or decrypted and then applying the appropriate encryption credentials. The Data Encryption Key (which is also the decryption key) is never transmitted or even written to disk (persisted). 3) It is created/derived in the Salesforce Platform and never leaves. It is created in a component of the platform called the Key Derivation Server. The Encryption key is derived/created from a combination of a Salesforce component and customer/tenant specific component. These are called secrets. Sometimes they are also referred to as key fragments. 4) The Encryption key in Salesforce Shield Encryption is generated from the master secret (Salesforce component) and the tenant secret (customer component) using PBKDF2 (Password-Based Key Derivation Function 2). 5) The Derived data encryption key is then securely passed to the encryption service and held in the cache of an application server. – Salesforce Retrieve The Data Encryption Key from the cache and performs the encryption. – To decrypt the data Salesforce Reads the encrypted data from the database and if the encryption (decryption) key is not in the cache then it needs to derive it again using the associated tenant secret, and then it decrypts using the key and the associated iv. Like Related Posts Salesforce OEM AppExchange Expanding its reach beyond CRM, Salesforce.com has launched a new service called AppExchange OEM Edition, aimed at non-CRM service providers. Read more The Salesforce Story In Marc Benioff’s own words How did salesforce.com grow from a start up in a rented apartment into the world’s Read more Salesforce Jigsaw Salesforce.com, a prominent figure in cloud computing, has finalized a deal to acquire Jigsaw, a wiki-style business contact database, for Read more Health Cloud Brings Healthcare Transformation Following swiftly after last week’s successful launch of Financial Services Cloud, Salesforce has announced the second installment in its series Read more

Read More
November 29, 2023in Salesforce Managed Services, Salesforce Shield
  • 1
  • 2

Subscribe to our mailing list. Join our mail list to receive our newsletter

We'll keep you up to date with our latest news, insights, free resources, and much more.
Don't worry, we won't spam you.
gettectonic.com