Salesforce has refused to pay ransom after cyberattacks impacted several customers, a move praised for discouraging extortion but criticised for shifting risk to clients. Experts warn affected companies to prepare for data leaks. The incident highlights the growing importance of third-party risk management and stronger cybersecurity measures across SaaS providers to handle future threats.