In recent weeks, major companies like Palo Alto Networks, Zscaler, Cloudflare, and SpyCloud have all confirmed they were affected by a string of cyberattacks that began with Salesforce. Or at least, ...
The ShinyHunters extortion group claims to have stolen over 1.5 billion Salesforce records from 760 companies using compromised Salesloft Drift OAuth tokens.
Threat actors had access to Salesloft’s GitHub account between March and June 2025 and performed reconnaissance.
ShinyHunters claims to have stolen more than 1.5 billion Salesforce records. According to the group, 760 companies were ...
The FBI has issued a FLASH alert warning that two threat clusters, tracked as UNC6040 and UNC6395, are compromising organizations' Salesforce environments to steal data and extort victims.
Salesloft has revealed that threat actors targeted customer Salesforce data after breaching its GitHub account ...
The integration between Salesforce and the Salesloft platform has been restored after an investigation by Mandiant linked an August supply chain attack to the compromise of Salesloft’s GitHub account, ...
The Register on MSN
Drift massive attack traced back to loose Salesloft GitHub account
Meanwhile the victim count grows The Salesloft Drift breach that compromised "hundreds" of companies including Google, Palo Alto Networks, and Cloudflare, all started with miscreants gaining access to ...
From March to June 2025, a cyber attacker was able to snoop around in Salesloft's GitHub account. This resulted in the theft ...
The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the breach.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback