Multiple cybersecurity firms confirm that their Salesforce data was compromised in the recent Salesforce–Salesloft Drift attack, affecting over 700 organizations. The attack exploited the Salesforce–Salesloft Drift integration to steal sensitive data such as access keys, passwords, and contact information. #Salesforce #SalesloftDrift
Keypoints
- The attack was publicly disclosed on August 26 by Google’s threat intelligence team.
- Threat actors exploited OAuth tokens via the Salesforce–Salesloft Drift integration to access data.
- The breach impacted over 700 organizations, including security firms Proofpoint, SpyCloud, Tanium, and Tenable.
- Evidence shows that compromised data included access credentials and personal contact details.
- Affected companies confirmed they took steps like credential rotation and system monitoring to mitigate the breach.
Read More: https://www.securityweek.com/more-cybersecurity-firms-hit-by-salesforce-salesloft-drift-breach/