Threat actors could gain access to improperly deactivated or unmaintained Salesforce sites by changing the host header, thereby gaining access to sensitive personal and business data. In a Wednesday blog post by Varonis Threat Labs, researcher Nitay Bachrach wrote so-called “ghost sites” are Salesforce communities that are no longer being used.

Source: SC Magazine