News

SecurityWeek

Salesloft GitHub Account Compromised Months Before Salesforce Attack

Threat actors had access to Salesloft’s GitHub account between March and June 2025 and performed reconnaissance.
CPO Magazine

Hackers Steal OAuth Tokens via Salesloft Drift Integrations in Massive Salesforce Data Theft

Google Threat Intelligence Group has tracked threat actor UNC6395 stealing OAuth tokens via Salesloft Drift integrations in a ...
Security Boulevard

Behind the Salesforce OAuth Drift Breach

In recent weeks, major companies like Palo Alto Networks, Zscaler, Cloudflare, and SpyCloud have all confirmed they were ...
CPO Magazine

New Round of Stolen OAuth Tokens Obtained From Salesloft Drift Platform Led to Compromise of Cloudflare, Palo Alto Networks & Zscaler

An as-of-yet undiagnosed compromise of the Salesloft Drift AI-driven platform has led to a rash of stolen OAuth tokens, in turn creating downstream breaches at some of the biggest names in the ...
HealthcareInfoSecurity

Salesloft Drift Attacks Exposed Zscaler Customer Data

Threat researchers report that "a widespread data theft campaign" traces to attackers stealing OAuth access tokens for ...
CSO OnlineOpinion

What the Salesloft Drift breaches reveal about 4th-party risk

Turns out your biggest breach risk might come from a vendor’s acquisition — and an old OAuth token you didn’t even know ...
Security Boulevard

Salesloft Drift Breach: 7 Steps to Protect Your Organization

The Salesloft Drift breach is expanding fast. Learn what’s at risk and the 7 critical steps security teams should take to ...
Techopedia

Salesloft Drift Breach Shows Why SaaS Security Needs Overhaul

The Salesloft Drift breach exposed SaaS integration risks. Learn how attackers gained access and what steps businesses must ...

Salesloft platform integration restored after probe reveals monthslong GitHub account compromise

The integration between Salesforce and the Salesloft platform has been restored after an investigation by Mandiant linked an ...