Tag: salesloft
-
Hundreds of Salesforce customers impacted by attack spree linked to third-party AI agent
Introduction: A significant cybersecurity incident has impacted hundreds of Salesforce customers, stemming from an attack spree that leveraged a third-party AI agent. Researchers have identified a threat group, tracked by Google as UNC6395, as the perpetrator behind this sophisticated operation. The group systematically exfiltrated substantial volumes of data from Salesforce customer instances by exploiting OAuth…
-
Salesloft OAuth Breach via Drift AI Chat Agent Exposes Salesforce Customer Data
Introduction: A significant data security incident has impacted the sales automation platform Salesloft, resulting in the theft of OAuth and refresh tokens. This breach was facilitated through the Drift artificial intelligence (AI) chat agent, leading to the exposure of customer data. The campaign, characterized as opportunistic, has been attributed to a threat actor identified as…