The FBI labeled this group as UNC6395 and apparently, it struck some of the biggest tech and security organizations, ...

The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in ...

The FBI on Friday released an alert warning that two hacker groups have been targeting Salesforce instances for extortion and ...

Threat actors had access to Salesloft’s GitHub account between March and June 2025 and performed reconnaissance.

Meanwhile the victim count grows The Salesloft Drift breach that compromised "hundreds" of companies including Google, Palo ...

Google-owned Mandiant, which began an investigation into the incident, said the threat actor, tracked as UNC6395, accessed ...

Proofpoint, SpyCloud, Tanium, and Tenable confirmed that hackers accessed information stored in their Salesforce instances.

The attacks have involved stolen authentication tokens for Salesloft-owned Drift, which threat actors have used to steal data ...

Salesloft on Tuesday announced that it's taking Drift temporarily offline "in the very near future," as multiple companies ...

Hackers stole digital keys from Salesloft’s chatbot platform, exposing thousands of companies Google says attackers tapped ...

The integration between Salesforce and the Salesloft platform has been restored after an investigation by Mandiant linked an ...