Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in ...

The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

Threat actors had access to Salesloft’s GitHub account between March and June 2025 and performed reconnaissance.

GitHub has shared a timeline of this month's security breach when a threat actor gained access to and stole private repositories belonging to dozens of organizations. The attacker used stolen OAuth ...

The integration between Salesforce and the Salesloft platform has been restored after an investigation by Mandiant linked an ...

Google-owned Mandiant, which began an investigation into the incident, said the threat actor, tracked as UNC6395, accessed the Salesloft GitHub account from March through June 2025. It's currently not ...

Salesforce-owned PaaS vendor Heroku and GitHub have both warned that compromised OAuth user tokens were likely used to download private data from organizations using Heroku and continuous integration ...

GitHub shared the timeline of breaches in April 2022, this timeline encompasses the information related to when a threat actor gained access and stole private repositories belonging to dozens of ...

Meanwhile the victim count grows The Salesloft Drift breach that compromised "hundreds" of companies including Google, Palo ...

A Russian researcher was able to take five low severity OAuth bugs and string them together to create what he calls a “simple but high severity exploit” in Github. A Russian security researcher was ...