Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in ...

The U.S. Federal Bureau of Investigation (FBI) has issued a flash alert to release indicators of compromise (IoCs) associated ...

一起影响超过700家组织（包括多家知名网络安全公司）的复杂供应链攻击事件，现已溯源至Salesloft公司GitHub账户在2025年3月遭到的入侵。2025年9月6日的最新通报显示，网络安全公司Mandiant调查确认，攻击者利用这一初始访问权限， ...

2025年8月发生的Salesloft Drift数据泄露事件堪称SaaS史上最严重的供应链攻击之一，展示了单一受损集成如何引发大规模组织数据暴露。威胁组织UNC6395通过利用OAuth令牌漏洞，获取了包括Cloudflare、Palo Alto ...

Threat actors had access to Salesloft’s GitHub account between March and June 2025 and performed reconnaissance.

Lovesac年销售额达7.5亿美元，以模块化沙发和豆袋沙发知名，在全美拥有267家展厅。公司称在事件发生后的三天内控制住了局面，目前无证据表明数据被滥用。 RansomHub近年来多次攻击了大型企业，包括哈里伯顿、Rite Aid药店等。

The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

Google-owned Mandiant, which began an investigation into the incident, said the threat actor, tracked as UNC6395, accessed the Salesloft GitHub account from March through June 2025. It's currently not ...

Cloudflare last week pinned the attack on a threat group it tracks as GRUB1 that aligns with UNC6395. And it's suspected that ...

Stay safe online by being cautious with cookies, avoiding HTTP sites, and using two-factor authentication for protection.

Salesloft has revealed that threat actors targeted customer Salesforce data after breaching its GitHub account ...

The integration between Salesforce and the Salesloft platform has been restored after an investigation by Mandiant linked an ...