First, let me say that Salesforce.com does a great job at providing advanced security measures to prevent hackers from accessing customer’s data. There are firewalls, host level and network level intrusion detection systems in place to combat any malicious opportunists. For more information about Salesforce’s security measures, see http://trust.salesforce.com
However, it has been said that 95% of all security breaches are because of a human error, not a failure in technology. Hackers today are experts at obtaining valid login credentials from unsuspecting users via a variety of methods. Phishing, is a technique they use to by masquerade as a trustworthy entity in an electronic communication. For example, you may receive an email saying that it is from Salesforce.com and they need to fix something that requires your login information. Social Engineering, is another common method, where hackers may call you on the phone and say that they are from the IT department and require your login credentials.
Regardless of how a hacker obtains the valid login information, now they have a legitimate login to your Salesforce.com organization. Today, how would you know if a hacker was logging in as someone fraudulently in your Salesforce.com instance? How would you know if someone was logging in as you? Currently there is no standard product or protection against this, until now!
Idaho Palm Software has developed Intrusion Detection with Login Locator for Salesforce.com. It is a new application soon to be available in the Salesforce AppExchange. It combines login information from Salesforce’s login tables with IP location information to monitor and track user’s login locations to avoid fraudulent logins. It compares login locations with recent login locations and measures the distance and speed between the logins assuming that someone could not, for example, login from New York and an hour later login from Seattle. Rules such as this are used that automatically add to cumulative login risk assessment points to help you quickly identify where possible fraudulent logins are taking place. All of these rules work with a notification engine that automatically emails the security administrator in the event of a high number of failed login attempts, users logging in from a different country, users logging in simultaneously from distant locations, and users with a high cumulative login risk score. In the event of a fraudulent login, administrators can click one button to immediately disable a suspect user account.
In addition to this protection, it also provides an interactive login map that shows where currently logged in users are logging in from. There is also a customizable login map that shows where users have logged in during the past 24 hours.
As I mentioned, this is a brand new product from Idaho Palm Software and we are looking for a few accounts that would be willing to beta test the software. If you would be willing to beta test the software and provide us with some constructive feedback, we would appreciate your input. To sign up, please click here to go to our contact page(http://www.idahopalm.com/contact.html), and select “Beta Test IDS Lite” from the pulldown menu. You will need to have a developer sandbox to install the package in. It will work with all versions of Salesforce/Force.com. Thank you for your support.
