The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

Google-owned Mandiant, which began an investigation into the incident, said the threat actor, tracked as UNC6395, accessed ...

Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in ...

A single compromised GitHub account allowed hackers to breach hundreds of companies, including major tech and cybersecurity ...

Threat actors had access to Salesloft’s GitHub account between March and June 2025 and performed reconnaissance.

Salesloft has revealed that threat actors targeted customer Salesforce data after breaching its GitHub account ...

The leaked token, accidentally embedded by the company’s employee in a public repository, might have provided an attacker ...

Qantas has announced a new compensation policy that reduces executive bonuses for the CEO and their team when damaging ...

Meanwhile the victim count grows The Salesloft Drift breach that compromised "hundreds" of companies including Google, Palo ...

Security investigators from Google said UNC6395 hackers spent several months running through Salesloft and Drift systems before launching a data breach campaign that some security researchers say has ...

A new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, ...

Chinese users looking to download popular browsers and communications software are being targeted by different malware variants, granting attackers remote access capabilities. This is according to ...