Salesforce customers have again been targeted in a “widespread data theft campaign,” this time via compromised OAuth tokens associated with the third-party Salesloft Drift application. Salesloft Drift ...

Attackers steal OAuth tokens to access third-party sales platform, then CRM data in 'widespread campaign' UPDATE Google says a recent spate of Salesforce-related breaches was caused by attackers ...

Hackers accessed some Salesforce information from risk management company Qualys during the ongoing Salesforce Drift hacking campaign, but they did not affect Qualys’ main platforms or customer data ...

Google has confirmed that it is among the victims of an ongoing data theft campaign targeting Salesforce instances. The tech giant confirmed that data has been retrieved by the threat actor, however ...

Google has confirmed that hackers have stolen the Salesforce-stored data of more than 200 companies in a large-scale supply chain hack. On Thursday, Salesforce disclosed a breach of “certain customers ...

Attackers leveraged stolen secrets to hijack integrations and access customer data, highlighting the need for enterprises to audit connected apps and enforce token hygiene. Salesforce has disclosed ...

Members of a financially motivated threat group are impersonating IT support staff in convincing phone calls and talking employees into granting access to their organization’s Salesforce environments.