The ShinyHunters extortion group claims to have stolen over 1.5 billion Salesforce records from 760 companies using compromised Salesloft Drift OAuth tokens. For the past year, the threat actors have ...

Salesloft said a breach of its GitHub account in March allowed hackers to steal authentication tokens that were later used in a mass-hack targeting several of its Big Tech customers. Citing an ...

Salesloft says attackers first breached its GitHub account in March, leading to the theft of Drift OAuth tokens later used in widespread Salesforce data theft attacks in August. Salesloft is a widely ...

Six people were murdered and 20 others injured in a Monday morning shooting attack at the Ramot Junction in Jerusalem. Full Story Six people were murdered and 20 others injured in a Monday morning ...

With the latest version of the Inspector (0.16.6), if you run the Quick OAuth Flow in the OAuth debugger against the simpleStreamableHttp.ts example server in the TS SDK (with --oauth flag), it will ...

Proofpoint, SpyCloud, Tanium, and Tenable confirmed that hackers accessed information stored in their Salesforce instances. Cybersecurity firms Proofpoint, SpyCloud, Tanium, and Tenable have confirmed ...

Google Threat Intelligence Group (GTIG) warns that attackers are stealing OAuth tokens via Salesloft Drift integrations in a massive Salesforce data theft. Alphabet’s GTIG and Mandiant attributed the ...

With #1717, the .well-known/oauth-authorization-server was enabled to list a set of supported scopes, not just the scopes that are required (required scopes can be a ...

Salesloft on Tuesday announced that it's taking Drift temporarily offline "in the very near future," as multiple companies have been ensnared in a far-reaching supply chain attack spree targeting the ...

Benzinga contacted Palo Alto Networks’ investor team for their take on the report and is awaiting a response. Attackers used custom Python tools, Tor for obfuscation and log deletion techniques to ...