Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in ...

2025年8月发生的Salesloft Drift数据泄露事件堪称SaaS史上最严重的供应链攻击之一，展示了单一受损集成如何引发大规模组织数据暴露。威胁组织UNC6395通过利用OAuth令牌漏洞，获取了包括Cloudflare、Palo Alto ...

一起影响超过700家组织（包括多家知名网络安全公司）的复杂供应链攻击事件，现已溯源至Salesloft公司GitHub账户在2025年3月遭到的入侵。2025年9月6日的最新通报显示，网络安全公司Mandiant调查确认，攻击者利用这一初始访问权限， ...

Threat actors had access to Salesloft’s GitHub account between March and June 2025 and performed reconnaissance.

A production-ready HTTP/HTTPS proxy with integrated OAuth 2.1 server, automatic ACME certificate management, and Model Context Protocol (MCP) compliance. This proxy provides secure, authenticated ...

You can create a release to package software, along with release notes and links to binary files, for other people to use. Learn more about releases in our docs.

The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

Google-owned Mandiant, which began an investigation into the incident, said the threat actor, tracked as UNC6395, accessed the Salesloft GitHub account from March through June 2025. It's currently not ...

Cloudflare last week pinned the attack on a threat group it tracks as GRUB1 that aligns with UNC6395. And it's suspected that ...

Salesloft has revealed that threat actors targeted customer Salesforce data after breaching its GitHub account ...

The integration between Salesforce and the Salesloft platform has been restored after an investigation by Mandiant linked an ...

Security investigators from Google said UNC6395 hackers spent several months running through Salesloft and Drift systems before launching a data breach campaign that some security researchers say has ...