David Berlind comments in his blog about recent successful phishing attacks against Salesforce.com employees and customers. He points out that as SFDC approaches one million users it is being honored with the attention of phishers. As I start to work on my 2008 predictions I have been thinking about the various "application platforms" and their vulnerability to hacks from a malicious application provider.
I think applications running on these new platforms will be as fraught with bugs as any applications and that hackers will use vulnerabilities to steal information. The risk with SFDC is that the 700+ applications available in the AppExchange quite often have access to a company's most critical data store: its customer database which includes revenue, and pipeline information. Scary.