Blast Radius of Salesloft Drift Attacks Remains Uncertain www.darkreading.com/cyberatta…

As more customers disclose data breaches resulting from the Salesloft Drift supply-chain attack, questions remain about how severe these breaches are, and how bad they’re going to get.

Numerous companies have disclosed downstream breaches resulting from this campaign. Zscaler and Palo Alto Networks were among the first, followed by others including Proofpoint, Cloudflare, Tenable, and more. But despite the wide reach of UNC6395’s campaign, the ultimate scope and severity remain unclear.