Share

Discover critical security risks in your Salesforce AppExchange packages with Matt Meyers, CEO & CoFounder of EzProtect and Certified Technical Architect. This session reveals how Salesforce’s basic security review creates dangerous blind spots, allowing managed packages with insecure flows, OAuth vulnerabilities, and hidden data exfiltration to bypass detection.

Learn why many native packages secretly send sensitive data to external systems and the crucial differences between pure native, hybrid, and embedded applications. Matt provides actionable frameworks for proper AppExchange security assessments, including Salesforce-specific questions IT security teams should ask instead of generic SaaS questionnaires.

From analyzing CRUD/FLS enforcement failures and system mode vulnerabilities to evaluating vendor expertise and implementing targeted review processes, this session equips administrators, Salesforce users, and security professionals with practical tools to prevent data breaches and transform vendor risk management from reactive to proactive. 

 

Your Salesforce data is invaluable—is it truly secure? If you are allowing users to upload files into your Salesforce orgs, you are risk of also uploaded viruses and consequential data breaches. Get in contact with us today. 

By Published On: August 17, 2025Categories: Cybersecurity, Salesforce, Salesforce Security Office Hours, Video0 Comments

Share

Did you love this blog and wish there could be more?

It is our goal to keep you informed about everything you need to know about Salesforce security to keep your Salesforce data and company safe and secure by providing you with the highest quality of original content.

If this sounds good to you, then sign-up below to be one of the first to know when the next super awesome Salesforce security blog has been released.

Download your free guide today!

Learn if you are at risk and how to start protecting your users!

GET THE FACTS NOW