2025年8月发生的Salesloft Drift数据泄露事件堪称SaaS史上最严重的供应链攻击之一，展示了单一受损集成如何引发大规模组织数据暴露。威胁组织UNC6395通过利用OAuth令牌漏洞，获取了包括Cloudflare、Palo Alto ...

一起影响超过700家组织（包括多家知名网络安全公司）的复杂供应链攻击事件，现已溯源至Salesloft公司GitHub账户在2025年3月遭到的入侵。2025年9月6日的最新通报显示，网络安全公司Mandiant调查确认，攻击者利用这一初始访问权限， ...

Salesloft has revealed that threat actors targeted customer Salesforce data after breaching its GitHub account ...

The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

Google-owned security firm Mandiant has determined the root cause for the expanding breach of AI-powered marketing platform ...

The integration between Salesforce and the Salesloft platform has been restored after an investigation by Mandiant linked an ...

Meanwhile the victim count grows The Salesloft Drift breach that compromised "hundreds" of companies including Google, Palo ...

The attacks have involved stolen authentication tokens for Salesloft-owned Drift, which threat actors have used to steal data ...

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Ian Arundale and Matthew Clark discuss the ...

As organizations accumulate more and more AWS objects, Brien Posey explains, those objects can become increasingly difficult to manage at scale, so he provides help. As organizations accumulate more ...