Topic: oauth token compromise

Salesforce Users Targeted in New Salesloft Data Theft Campaign

A new data theft campaign targeted Salesforce users via compromised OAuth tokens from the Salesloft Drift application, affecting potentially hundreds of organizations and exfiltrating sensitive credentials. Google's Threat Intelligence Group identified the threat actor UNC6395, who conducted atta...