Tag: UNC6395
-
Salesloft Breach Triggers Global Threat Cascade
A large-scale theft of authentication tokens from Salesloft, developer of the corporate chatbot platform, has triggered a chain reaction of threats across digital infrastructure worldwide. According to a warning from Google, the breach affects not only data within Salesforce but also hundreds of third-party services integrated with Salesloft—including Slack, Google Workspace, Amazon S3, Microsoft Azure,…
-
Data Theft Alert: Salesforce Instances Breached via Third-Party App OAuth Tokens
Drift has disclosed details of a security incident involving its Salesforce integration. Between August 8 and August 18, 2025, an unknown actor exploited OAuth credentials to extract data from customer Salesforce instances. According to the company, the attacker’s primary objective was the theft of sensitive secrets—ranging from AWS keys and passwords to access tokens associated…