Security Boulevard

Cisco CRM “Salesforce Data Breach” Claims Tied to ShinyHunters: What Defenders Should Look For and How to Respond

ShinyHunters is claiming access to a large set of CRM data tied to Cisco, including Salesforce records, AWS assets, and GitHub repositories, and ...
CSOonline

OAuth token compromise hits Salesforce ecosystem again, Gainsight impacted

Attackers leveraged stolen secrets to hijack integrations and access customer data, highlighting the need for enterprises to audit connected apps and enforce token hygiene. Salesforce has disclosed ...
Hosted on MSN

Salesloft breached to steal OAuth tokens for Salesforce data-theft attacks

Revenue workflow platform Salesloft suffered a cyberattack which saw threat actors break in through a third-party and steal sensitive information. The company is using Drift, a conversational ...
CSOonline

Attackers steal data from Salesforce instances via compromised AI live chat tool

A threat actor managed to obtain Salesforce OAuth tokens from a third-party integration called Salesloft Drift and used the tokens to download large volumes of data from impacted Salesforce instances.
Bleeping Computer

ShinyHunters claims 1.5 billion Salesforce records stolen in Drift hacks

The ShinyHunters extortion group claims to have stolen over 1.5 billion Salesforce records from 760 companies using compromised Salesloft Drift OAuth tokens. For the past year, the threat actors have ...
Hosted on MSN

Salesforce Probes Gainsight OAuth Anomalies as SaaS Token Attacks Escalate

Salesforce is looking into unusual OAuth activity associated with Gainsight integrations after observing behavior that might have revealed customer data. Initial indications suggest a deliberate ...