Cybersecurity in the Salesforce Ecosystem: What You Need to Know in 2025–2026

Cyber security podcast - October 2025 - With Jari Salomaa of Valo.ai In this ISV Forum podcast, Andre (ISV Forum) sits down with Jari from Valo to unpack one of the hottest topics of the moment: how to protect your Salesforce environment from cyber threats without drowning in cost and complexity. We dive into: The latest trends in cyberattacks and what they mean for Salesforce customers and partners Practical steps to prevent data breaches in 2025 and beyond The right mix of tools, policies, and legal safeguards to keep your org secure How to build security awareness inside your company so everyone contributes to protecting data Why simplifying security is the secret to reducing costs while strengthening defences. Whether you’re a Salesforce admin, product owner, platform owner, or ISV partner, this episode is full of insights to help you stay one step ahead of cybercriminals. Tune in to hear real-world perspectives from Valo’s cybersecurity expertise and discover how to make security a business enabler - not just an IT cost. Chapters: 00:22 – Introduction & agenda: preventing data breaches in 2025–26 00:46 – Guest intro & welcome: Jari (Valo) joins ISV Forum 02:12 – Jari’s background: Salesforce security & platform trust 03:55 – Products shaped: Salesforce Shield & ServiceNow Vault experience 04:50 – “Evil twin” attacks & third-party app risks (Data Loader example) 11:40 – Connected Apps 101 → Trusted Connected Apps (attack chain) 14:43 – OAuth device flow & the 8-digit code tactic (social engineering) 18:32 – Shared security model: Salesforce vs. customer responsibility 20:17 – AI agents are here: why observability matters 22:57 – Practical vigilance tip: always confirm via quick video call 26:08 – Valo’s observability for Salesforce: what you see 27:40 – Try it free + pricing overview 30:31 – Security hygiene: quarterly audits & ISV best practices 33:32 – Events & resources: Dreamforce security panel invite 35:13 – Wrap-up & thanks