Update: NordVPN has denied allegations that its internal Salesforce development servers were breached. The company stated that cybercriminals accessed ‘dummy data’ from a trial account on a third-party automated testing platform. No actual user data was compromised, according to NordVPN.
The incident highlights the importance of securing third-party platforms and ensuring that all data is properly anonymized during development and testing phases. NordVPN has taken steps to investigate and secure their systems further.