Cloudflare last week pinned the attack on a threat group it tracks as GRUB1 that aligns with UNC6395. And it's suspected that ...

Google-owned security firm Mandiant has determined the root cause for the expanding breach of AI-powered marketing platform ...

Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in ...

Threat actors had access to Salesloft’s GitHub account between March and June 2025 and performed reconnaissance.

Salesloft has revealed that threat actors targeted customer Salesforce data after breaching its GitHub account ...

Salesloft has revealed that the data breach linked to its Drift application started with the compromise of its GitHub account. Google-owned Mandiant, which began an investigation into the incident, ...

The integration between Salesforce and the Salesloft platform has been restored after an investigation by Mandiant linked an ...

Proofpoint, SpyCloud, Tanium, and Tenable confirmed that hackers accessed information stored in their Salesforce instances.

A single compromised GitHub account allowed hackers to breach hundreds of companies, including major tech and cybersecurity ...

The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

The Salesloft Drift breach exposed SaaS integration risks. Learn how attackers gained access and what steps businesses must ...

Security investigators from Google said UNC6395 hackers spent several months running through Salesloft and Drift systems before launching a data breach campaign that some security researchers say has ...