Security investigators from Google said UNC6395 hackers spent several months running through Salesloft and Drift systems before launching a data breach campaign that some security researchers say has ...

The Salesloft Drift breach exposed SaaS integration risks. Learn how attackers gained access and what steps businesses must ...

Turns out your biggest breach risk might come from a vendor’s acquisition — and an old OAuth token you didn’t even know ...

Cloudflare last week pinned the attack on a threat group it tracks as GRUB1 that aligns with UNC6395. And it's suspected that ...

Salesloft has revealed that threat actors targeted customer Salesforce data after breaching its GitHub account ...

The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

An as-of-yet undiagnosed compromise of the Salesloft Drift AI-driven platform has led to a rash of stolen OAuth tokens, in turn creating downstream breaches at some of the biggest names in the ...

Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in ...

Threat actors had access to Salesloft’s GitHub account between March and June 2025 and performed reconnaissance.

Google-owned security firm Mandiant has determined the root cause for the expanding breach of AI-powered marketing platform ...

Cybersecurity firms Tenable and Qualys fell to attacks stemming from hacker theft of authentication tokens from a third party ...

The target of the attack was the Salesloft Drift platform, an AI chatbot that companies can integrate into their websites. It can show up as a little chat icon on screens.