Security Firms Hit by Salesforce–Salesloft Drift Breach

Joseph K
Sep 2
1 min read

Between August 8 and August 18, hackers used compromised OAuth tokens for the third-party AI chat bot Salesloft Drift to export large volumes of data from the Salesforce instances of hundreds of organizations.

Attributed to a threat actor tracked as UNC6395 by Google and GRUB1 by Cloudflare, the campaign was aimed at extracting credentials and other sensitive information, including AWS access keys, passwords, and Snowflake-related access tokens.

https://www.securityweek.com/security-firms-hit-by-salesforce-salesloft-drift-breach/

Comments

The $35 Billion System Used By Salesforce And The Founders Who Sold To Them

6 days ago

Salesforce Executive Urges Companies to Adapt AI Strategies for Future Relevance

7 days ago

Salesforce India debuts Agentforce Life Sciences to drive customer engagement and alleviate doctor burnout

7 days ago

Facing an Uproar, Salesforce CEO Marc Benioff Showed Why He’s an Effective Leader

7 days ago

Salesforce Dreams Of The Agentic Enterprise

7 days ago

Security Firms Hit by Salesforce–Salesloft Drift Breach

Comments

Recent Posts

The $35 Billion System Used By Salesforce And The Founders Who Sold To Them

Salesforce Executive Urges Companies to Adapt AI Strategies for Future Relevance

Salesforce India debuts Agentforce Life Sciences to drive customer engagement and alleviate doctor burnout

Facing an Uproar, Salesforce CEO Marc Benioff Showed Why He’s an Effective Leader

Salesforce Dreams Of The Agentic Enterprise

Search By Tags

Get In Touch

Headquarters

Seoul Office