Zscaler was targeted in a supply chain attack that involved the theft of OAuth tokens from the Salesloft Drift application, leading to data exposure within its Salesforce system. The incident highlights the risks of third-party application vulnerabilities and the importance of cybersecurity vigilance. #Salesloft #OAuthTokens
Keypoints
- Zscalerβs Salesforce data was accessed through stolen OAuth tokens from the Salesloft Drift app.
- The compromised information included contact details, job titles, and Salesforce-related content.
- Zscaler responded quickly by revoking access and rotating API tokens to mitigate the breach.
- The attack is believed to be linked to threat actor UNC6395, targeting multiple organizations.
- Organizations are advised to remain vigilant against phishing, social engineering, and unauthorized disclosures.
Read More: https://www.infosecurity-magazine.com/news/zscaler-customer-info-taken/