#oauth-token-theft
#oauth-token-theft
[ follow ]
fromTheregister
5 days agoDrift attackers gained entry via a Salesloft GitHub account
The Salesloft Drift breach that compromised "hundreds" of companies including Google, Palo Alto Networks, and Cloudflare, all started with miscreants gaining access to the Salesloft GitHub account in March. This new information comes from a Saturday update into the Mandiant-led investigation - Salesloft hired the incident response firm to determine the root cause and scope of the incident - and a Sunday alert that the integration between Salesloft and Salesforce has now been restored.
Information security
Information security
fromTechCrunch
5 days agoSalesloft says Drift customer data thefts linked to March GitHub account hack | TechCrunch
A March GitHub breach at Salesloft allowed theft of authentication and OAuth tokens, enabling mass hacks of multiple large tech customers and a supply-chain compromise.
Information security
fromIT Pro
1 week agoThe Salesloft Drift victim list keeps growing: Zscaler is the latest to confirm a breach, warning customers to remain wary of follow-up phishing attacks
Zscaler experienced a Salesforce data exposure after Salesloft Drift OAuth token theft, allowing limited access to contact details and Salesforce-related commercial information.
Information security
fromThe Hacker News
2 weeks agoGoogle Warns Salesloft OAuth Breach Extends Beyond Salesforce, Impacting All Integrations
All Salesloft Drift integrations and stored authentication tokens are potentially compromised, enabling attackers to access Salesforce instances and Google Workspace accounts via stolen OAuth tokens.
[ Load more ]