Salesloft issued a security notification on August 26 regarding its Drift application. It appears to be a broad opportunistic attack on Salesloft/Drift instances integrated with Salesforce tenants.

Hackers have used a chatbot developed by Salesloft Inc. to access a large number of Salesforce environments and download their contents. Salesloft and Google LLC disclosed the breach last Thursday.

Salesforce failed to address the massive wave of OAuth breaches at its Dreamforce conference, but securing third-party authentication is paramount for the agentic future it seeks. Salesforce’s 2025 ...

The recent mass-theft of authentication tokens from Salesloft, whose AI chatbot is used by a broad swath of corporate America to convert customer interaction into Salesforce leads, has left many ...

Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in widespread Salesforce data theft attacks in August. Salesloft is a widely ...

Google Threat Intelligence Group shared its findings about a threat actor responsible for stealing Salesforce customer data via Salesloft Drift. A previously unidentified threat actor, UNC6395, has ...

Cybersecurity company Zscaler warns it suffered a data breach after threat actors gained access to its Salesforce instance and stole customer information, including the contents of support cases. This ...

As more customers disclose data breaches resulting from the Salesloft Drift supply-chain attack, questions remain about how severe these breaches are and how bad they're going to get. Last month, ...

The cybersecurity vendors confirmed they were impacted in the attacks involving stolen authentication tokens for Salesloft Drift, a popular third-party Salesforce application. Palo Alto Networks and ...

ShinyHunters claim theft of 1.5 billion records from 760 global companies Attackers exploited GitHub secrets to access sensitive Salesforce object tables FBI issued warnings as hacker groups announced ...

Salesloft said a breach of its GitHub account in March allowed hackers to steal authentication tokens that were later used in a mass-hack targeting several of its Big Tech customers. Citing an ...

On August 28th, Mandiant issued an update to its previous Salesloft Drift advisory. Therein, Mandiant discussed that Salesloft issued a security notification on Aug. 26 regarding its Drift application ...