Salesforce Disconnects Gainsight Applications Following Unusual Activity
November 22, 2025 - Salesforce disconnected Gainsight-published applications from its platform on Thursday, november 20th, and the connection remains severed as of Friday, according to a Salesforce help article published today. The disconnection occurred due to unusual activity related to the applications’ external connection to Salesforce, and customers are unable to connect those applications until further notice.
According to the help article, “there is no indication that this issue resulted from any vulnerability in the Salesforce platform.”
Gainsight initially reported investigating Salesforce connection failures on its status page on Thursday. The company later steadfast the failures stemmed from Salesforce revoking active access to the Gainsight SFDC Connector. Gainsight has continued to monitor the situation and provide updates, linking to the Salesforce help article on Friday at 19:15 UTC.
“We continue to work closely with Salesforce as part of the ongoing examination,” Gainsight stated in its update. “Gainsight-published applications remain disconnected from Salesforce at this time. We will provide further updates as additional facts becomes available.”
The incident highlights a growing trend of cybersecurity threats originating through third-party suppliers. A Verizon report from May indicated that 30% of data breaches occurring between November 1, 2024, and October 31, 2025, involved third parties like suppliers, vendors, and IT support providers – a meaningful increase from 15% the previous year. Verizon noted that these incidents have evolved from occasional,minor issues to a “much more widespread and insidious problem” with potentially devastating consequences for businesses. Cybersecurity experts predicted in September that attacks targeting companies’ third-party suppliers would continue to rise throughout 2025.
