{"id":5346,"date":"2025-10-27T16:18:00","date_gmt":"2025-10-27T16:18:00","guid":{"rendered":"https:\/\/blog.truthscan.com\/?p=5346"},"modified":"2026-03-06T10:20:18","modified_gmt":"2026-03-06T10:20:18","slug":"zabezpeceni-podniku","status":"publish","type":"post","link":"https:\/\/blog.truthscan.com\/cs\/zabezpeceni-podniku\/","title":{"rendered":"Jak Salesforce vede v oblasti podnikov\u00e9ho zabezpe\u010den\u00ed Dom\u016f"},"content":{"rendered":"

V \u010dervnu 2025 dostal zam\u011bstnanec spole\u010dnosti Google zd\u00e1nliv\u011b rutinn\u00ed telefon\u00e1t z IT podpory.<\/p>\n\n\n\n

Osoba na lince mluvila sebejist\u011b, p\u016fsobila profesion\u00e1ln\u011b a p\u016fsobila naprosto legitimn\u011b.<\/p>\n\n\n\n

Technik po\u017e\u00e1dal zam\u011bstnance, aby schv\u00e1lil novou aplikaci v syst\u00e9mu Salesforce spole\u010dnosti.<\/p>\n\n\n\n

Tento \u00fatok byl obzvl\u00e1\u0161t\u011b n\u00e1padn\u00fd t\u00edm, \u017ee vyu\u017e\u00edval deepfake audio<\/a>, hlasy generovan\u00e9 um\u011blou inteligenc\u00ed tak realistick\u00e9, \u017ee zneu\u017e\u00edvaj\u00ed jednu z nejd\u016fv\u011bryhodn\u011bj\u0161\u00edch metod ov\u011b\u0159ov\u00e1n\u00ed. <\/p>\n\n\n\n

Tento incident v\u0161ak znamenal zlom v p\u0159\u00edstupu podnik\u016f k modern\u00edm hrozb\u00e1m.<\/p>\n\n\n\n

Tento incident, spojen\u00fd s Skupina ShinyHunters<\/a>, odhalil, jak \u00fato\u010dn\u00edci nyn\u00ed vyu\u017e\u00edvaj\u00ed um\u011blou inteligenci k pokus\u016fm o naru\u0161en\u00ed firemn\u00edch syst\u00e9m\u016f. <\/p>\n\n\n\n

Uk\u00e1zalo se v\u0161ak tak\u00e9, jak rychle se spole\u010dnost Salesforce a \u0161ir\u0161\u00ed bezpe\u010dnostn\u00ed komunita dok\u00e1\u017ee zmobilizovat k ochran\u011b z\u00e1kazn\u00edk\u016f.<\/p>\n\n\n\n

Salesforce jako l\u00eddr v oblasti zabezpe\u010den\u00ed, ne jen c\u00edl<\/strong><\/p>\n\n\n\n

P\u0159esto\u017ee se Salesforce stal ter\u010dem \u00fatok\u016f soci\u00e1ln\u00edho in\u017een\u00fdrstv\u00ed s vyu\u017eit\u00edm um\u011bl\u00e9 inteligence, reakce spole\u010dnosti ukazuje, pro\u010d z\u016fst\u00e1v\u00e1 d\u016fv\u011bryhodnou p\u00e1te\u0159\u00ed \u0159\u00edzen\u00ed vztah\u016f se z\u00e1kazn\u00edky pro miliony organizac\u00ed po cel\u00e9m sv\u011bt\u011b.<\/p>\n\n\n\n

Vzhledem k tomu, \u017ee Salesforce hraje v podnikov\u00fdch operac\u00edch tak z\u00e1sadn\u00ed roli, je p\u0159irozen\u00fdm c\u00edlem \u00fato\u010dn\u00edk\u016f. Bezpe\u010dnostn\u00ed experti to v\u0161ak nepova\u017euj\u00ed za slabinu.<\/p>\n\n\n\n

Pova\u017euj\u00ed to naopak za d\u016fkaz vedouc\u00ed pozice platformy na trhu a hlubok\u00e9 d\u016fv\u011bry, kterou j\u00ed firmy projevuj\u00ed.<\/p>\n\n\n\n

Podle Vedouc\u00ed odd\u011blen\u00ed Threat Intelligence spole\u010dnosti WithSecure<\/a>, Tim West:<\/p>\n\n\n\n

\"Hackersk\u00e9 skupiny jako Scattered Spider pou\u017e\u00edvaj\u00ed soci\u00e1ln\u00ed in\u017een\u00fdrstv\u00ed k z\u00edsk\u00e1n\u00ed p\u0159\u00edstupu do prost\u0159ed\u00ed SaaS. Jejich \u00fatoky mohou vypadat technicky jednodu\u0161e, ale to neznamen\u00e1, \u017ee jsou m\u00e9n\u011b nebezpe\u010dn\u00e9. Z\u00e1le\u017e\u00ed na tom, jak rychle platformy zareaguj\u00ed a p\u0159izp\u016fsob\u00ed se.\"<\/em><\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

Rychl\u00e1 reakce spole\u010dnosti Salesforce na vznikaj\u00edc\u00ed hrozby<\/strong><\/p>\n\n\n\n

Kdy\u017e se na za\u010d\u00e1tku roku 2025 zv\u00fd\u0161ila podez\u0159el\u00e1 aktivita, spole\u010dnost Salesforce ne\u010dekala na rozs\u00e1hl\u00e9 \u0161kody.<\/p>\n\n\n\n

Spole\u010dnost v b\u0159eznu 2025 p\u0159iznala potenci\u00e1ln\u00ed \u00fato\u010dn\u00e9 kampan\u011b a varovala z\u00e1kazn\u00edky, \u017ee se akt\u00e9\u0159i hrozeb pokou\u0161ej\u00ed manipulovat se zam\u011bstnanci, aby schvalovali \u0161kodliv\u00e9 p\u0159ipojen\u00e9 aplikace.<\/p>\n\n\n\n

Spole\u010dnost Salesforce zd\u016fraznila, \u017ee tyto incidenty nebyly d\u016fsledkem chyb v architektu\u0159e jej\u00ed platformy.<\/p>\n\n\n\n

Sp\u00ed\u0161e se jednalo o p\u0159\u00edklady pokro\u010dil\u00fdch taktik soci\u00e1ln\u00edho in\u017een\u00fdrstv\u00ed, se kter\u00fdmi se m\u016f\u017ee setkat ka\u017ed\u00e1 organizace. <\/p>\n\n\n\n

Spole\u010dnost od t\u00e9 doby zavedla komplexn\u00ed obrann\u00e1 opat\u0159en\u00ed, kter\u00e1 stanovila nov\u00e9 pr\u016fmyslov\u00e9 standardy:<\/p>\n\n\n\n

Aby spole\u010dnost Salesforce pos\u00edlila svou obranu, zavedla ochranu proti p\u0159ipojen\u00fdm aplikac\u00edm, kter\u00e1 automaticky deaktivuje nenainstalovan\u00e9 p\u0159ipojen\u00e9 aplikace pro nov\u00e9 u\u017eivatele, \u010d\u00edm\u017e v\u00fdrazn\u011b zmen\u0161uje prostor pro \u00fatoky. <\/p>\n\n\n\n

Sou\u010dasn\u011b spole\u010dnost zavedla Omezen\u00ed toku OAuth<\/a>, blokov\u00e1n\u00ed spojen\u00ed nav\u00e1zan\u00fdch prost\u0159ednictv\u00edm autoriza\u010dn\u00edch proces\u016f, kter\u00e1 odpov\u00eddala zn\u00e1m\u00fdm vzor\u016fm \u00fatok\u016f. <\/p>\n\n\n\n

Vzhledem k tomu, \u017ee se podniky st\u00e1le v\u00edce spol\u00e9haj\u00ed na p\u0159izp\u016fsoben\u00e9 platformy a integrace t\u0159et\u00edch stran, st\u00e1v\u00e1 se n\u00e1vrh syst\u00e9mu s ohledem na bezpe\u010dnost nezbytn\u00fdm - zejm\u00e9na v odv\u011btv\u00edch, jako jsou nemovitosti, kde jsou \u0159e\u0161en\u00ed CRM na m\u00edru \u0161iroce roz\u0161\u00ed\u0159ena, jak je zd\u016frazn\u011bno v podrobn\u00e9m pr\u016fvodci na str\u00e1nk\u00e1ch\u00a0v\u00fdvoj CRM na zak\u00e1zku pro realitn\u00ed kancel\u00e1\u0159e<\/a>.<\/p>\n\n\n\n

Krom\u011b t\u011bchto technick\u00fdch opat\u0159en\u00ed spole\u010dnost Salesforce tak\u00e9 vylep\u0161ila sv\u00e9 monitorovac\u00ed syst\u00e9my, aby v re\u00e1ln\u00e9m \u010dase detekovala neobvykl\u00e9 vzory autorizace aplikac\u00ed, a investovala do vzd\u011bl\u00e1v\u00e1n\u00ed u\u017eivatel\u016f, kter\u00fdm nab\u00eddla jasn\u00e9 a praktick\u00e9 pokyny, jak rozpoznat pokusy o soci\u00e1ln\u00ed in\u017een\u00fdrstv\u00ed.<\/p>\n\n\n\n

V srpnu 2025 spole\u010dnost Salesforce p\u0159ijala rozhodn\u00e1 opat\u0159en\u00ed a pozastavila v\u0161echny integrace s technologiemi Salesloft, v\u010detn\u011b aplikace Drift, pot\u00e9, co zjistila, \u017ee p\u0159i souvisej\u00edc\u00edch \u00fatoc\u00edch byly kompromitov\u00e1ny tokeny OAuth. <\/p>\n\n\n\n

Pochopen\u00ed \u0161ir\u0161\u00edho prost\u0159ed\u00ed fale\u0161n\u00fdch kopi\u00ed Deepfake<\/strong><\/p>\n\n\n\n

Hrozba deepfake sah\u00e1 daleko za hranice spole\u010dnosti Salesforce.<\/p>\n\n\n\n

Kr\u00e1de\u017e 25 milion\u016f v in\u017een\u00fdrsk\u00e9 firm\u011b Arup na za\u010d\u00e1tku roku 2024 uk\u00e1zala, \u017ee t\u011bmto rizik\u016fm \u010del\u00ed sofistikovan\u00e9 organizace nap\u0159\u00ed\u010d v\u0161emi odv\u011btv\u00edmi. <\/p>\n\n\n\n

Podle ned\u00e1vn\u00e9ho pr\u016fzkumu 70 % lid\u00ed uv\u00e1d\u00ed, \u017ee nemaj\u00ed d\u016fv\u011bru v to, \u017ee rozeznaj\u00ed skute\u010dn\u00e9 hlasy od klonovan\u00fdch, co\u017e je zranitelnost, kter\u00e1 ovliv\u0148uje cel\u00e9 podnikov\u00e9 bezpe\u010dnostn\u00ed prost\u0159ed\u00ed.<\/p>\n\n\n\n

Zpr\u00e1va CrowdStrike 2025 Global Threat Report zjistila, \u017ee po\u010det hlasov\u00fdch phishingov\u00fdch \u00fatok\u016f vzrostl mezi prvn\u00ed a druhou polovinou roku 2024 o 442 procent, a to d\u00edky n\u00e1stroj\u016fm um\u011bl\u00e9 inteligence, kter\u00e9 umo\u017e\u0148uj\u00ed p\u0159esv\u011bd\u010div\u011bj\u0161\u00ed pokusy o phishing a vyd\u00e1v\u00e1n\u00ed se za podvodn\u00edky.<\/p>\n\n\n\n

Toto zji\u0161t\u011bn\u00ed poukazuje na rostouc\u00ed probl\u00e9m cel\u00e9ho odv\u011btv\u00ed, nejen spole\u010dnosti Salesfore.<\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

Jak organizace v\u00edt\u011bz\u00ed proti Deepfake \u00fatok\u016fm<\/strong><\/p>\n\n\n\n

P\u0159edn\u00ed organizace si uv\u011bdomuj\u00ed, \u017ee ochrana proti \u00fatok\u016fm zalo\u017een\u00fdm na deepfake vy\u017eaduje v\u00edce ne\u017e jen pokro\u010dilou technologii.<\/p>\n\n\n\n

To vy\u017eaduje kompletn\u00ed p\u0159ehodnocen\u00ed zp\u016fsobu vytv\u00e1\u0159en\u00ed d\u016fv\u011bry a ov\u011b\u0159ov\u00e1n\u00ed.<\/p>\n\n\n\n

Komunika\u010dn\u00ed r\u00e1mce nulov\u00e9 d\u016fv\u011bryhodnosti jsou st\u00e1le b\u011b\u017en\u011bj\u0161\u00ed, proto\u017ee organizace hledaj\u00ed siln\u011bj\u0161\u00ed zp\u016fsoby potvrzen\u00ed identity a sn\u00ed\u017een\u00ed rizika.<\/p>\n\n\n\n

Nap\u0159\u00edklad \u0159e\u0161en\u00ed jako RealityCheck od spole\u010dnosti Beyond Identity poskytuj\u00ed ov\u011b\u0159en\u00e9 identifika\u010dn\u00ed odznaky podpo\u0159en\u00e9 kryptografick\u00fdm ov\u011b\u0159ov\u00e1n\u00edm za\u0159\u00edzen\u00ed a pr\u016fb\u011b\u017en\u00fdm vyhodnocov\u00e1n\u00edm rizik. <\/p>\n\n\n\n

Organizace, kter\u00e9 pou\u017e\u00edvaj\u00ed simula\u010dn\u00ed platformu deepfake spole\u010dnosti Resemble AI, zaznamenaly po jej\u00edm zaveden\u00ed a\u017e 90procentn\u00ed pokles \u00fasp\u011b\u0161n\u00fdch \u00fatok\u016f, proto\u017ee platforma vyu\u017e\u00edv\u00e1 hyperrealistick\u00e9 simulace k tr\u00e9ninku t\u00fdm\u016f, aby dok\u00e1zaly efektivn\u011bji rozpozn\u00e1vat hrozby a reagovat na n\u011b.<\/p>\n\n\n\n

P\u0159edn\u00ed bezpe\u010dnostn\u00ed postupy nyn\u00ed kladou d\u016fraz na v\u00edcekan\u00e1lov\u00e9 ov\u011b\u0159ov\u00e1n\u00ed vysoce rizikov\u00fdch po\u017eadavk\u016f bez ohledu na to, jak autenticky vypad\u00e1 po\u010d\u00e1te\u010dn\u00ed komunikace.<\/p>\n\n\n\n

Tyto protokoly v kombinaci s vylep\u0161en\u00edmi zabezpe\u010den\u00ed platformy Salesforce vytv\u00e1\u0159ej\u00ed impozantn\u00ed ochranu proti soci\u00e1ln\u00edmu in\u017een\u00fdrstv\u00ed.<\/p>\n\n\n\n

Cesta vp\u0159ed: D\u016fv\u011bra prost\u0159ednictv\u00edm ov\u011b\u0159ov\u00e1n\u00ed<\/strong><\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

N\u00e1r\u016fst hrozeb typu deepfake p\u0159edstavuje zlomov\u00fd bod v oblasti kybernetick\u00e9 bezpe\u010dnosti, ale tak\u00e9 p\u0159\u00edle\u017eitost pro platformy, jako je Salesforce, aby se ujaly veden\u00ed p\u0159i stanovov\u00e1n\u00ed nov\u00fdch bezpe\u010dnostn\u00edch standard\u016f. <\/p>\n\n\n\n

D\u00edky rychl\u00e9 detekci hrozeb, jasn\u00e9 komunikaci se z\u00e1kazn\u00edky, rychl\u00fdm aktualizac\u00edm zabezpe\u010den\u00ed a siln\u00e9 spolupr\u00e1ci s \u0161ir\u0161\u00ed bezpe\u010dnostn\u00ed komunitou ukazuje Salesforce, jak m\u016f\u017ee podnik efektivn\u011b reagovat na nov\u00e9 hrozby.<\/p>\n\n\n\n

V dob\u011b podvod\u016f vytv\u00e1\u0159en\u00fdch um\u011blou inteligenc\u00ed ji\u017e nelze d\u016fv\u011bru p\u0159edpokl\u00e1dat, ale je t\u0159eba ji ov\u011b\u0159it.<\/p>\n\n\n\n

Spole\u010dnosti, kter\u00e9 si to uv\u011bdomuj\u00ed a investuj\u00ed do spr\u00e1vn\u00fdch n\u00e1stroj\u016f, proces\u016f a kultury, budou l\u00e9pe p\u0159ipraveny chr\u00e1nit sv\u00e9 zabezpe\u010den\u00ed i pov\u011bst. <\/p>\n\n\n\n

Chcete-li si ov\u011b\u0159it pravost se stejnou jistotou, prozkoumejte TruthScan<\/a>, d\u016fv\u011bryhodn\u00e9 \u0159e\u0161en\u00ed pro detekce obsahu vytvo\u0159en\u00e9ho um\u011blou inteligenc\u00ed<\/a> a pos\u00edlit z\u00e1klady digit\u00e1ln\u00ed d\u016fv\u011bry ve va\u0161\u00ed organizaci.<\/p>","protected":false},"excerpt":{"rendered":"

V \u010dervnu 2025 dostal zam\u011bstnanec spole\u010dnosti Google zd\u00e1nliv\u011b rutinn\u00ed telefon\u00e1t z IT odd\u011blen\u00ed a [...]<\/p>","protected":false},"author":15,"featured_media":5359,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"rank_math_lock_modified_date":false,"_themeisle_gutenberg_block_has_review":false,"footnotes":""},"categories":[31],"tags":[],"class_list":["post-5346","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-helpful-ai-content-tips"],"_links":{"self":[{"href":"https:\/\/blog.truthscan.com\/cs\/wp-json\/wp\/v2\/posts\/5346","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blog.truthscan.com\/cs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.truthscan.com\/cs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.truthscan.com\/cs\/wp-json\/wp\/v2\/users\/15"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.truthscan.com\/cs\/wp-json\/wp\/v2\/comments?post=5346"}],"version-history":[{"count":5,"href":"https:\/\/blog.truthscan.com\/cs\/wp-json\/wp\/v2\/posts\/5346\/revisions"}],"predecessor-version":[{"id":5563,"href":"https:\/\/blog.truthscan.com\/cs\/wp-json\/wp\/v2\/posts\/5346\/revisions\/5563"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.truthscan.com\/cs\/wp-json\/wp\/v2\/media\/5359"}],"wp:attachment":[{"href":"https:\/\/blog.truthscan.com\/cs\/wp-json\/wp\/v2\/media?parent=5346"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.truthscan.com\/cs\/wp-json\/wp\/v2\/categories?post=5346"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.truthscan.com\/cs\/wp-json\/wp\/v2\/tags?post=5346"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}