Tenable Confirms Data Leak Amid Salesloft Drift Hack - The420.in

Article claims, Cybersecurity firm Tenable confirmed a data breach exposing customer business contact information through the widespread Salesloft Drift supply chain attack that exploited Salesforce integrations across multiple organizations. The breach compromised customer names, email addresses, phone numbers, location metadata, and support case details, though Tenable emphasized its core products and proprietary data remained secure with no evidence of active misuse. The attack used stolen OAuth tokens to infiltrate Salesforce instances, affecting numerous major companies including Palo Alto Networks, Zscaler, Google, Cloudflare, Proofpoint, and CyberArk in a coordinated campaign targeting third-party integrations. Tenable responded by revoking compromised credentials, disabling the Salesloft Drift application, hardening its environment, and implementing continuous monitoring of its Salesforce and SaaS tools. The incident highlights critical security vulnerabilities in third-party CRM integrations and underscores the need for organizations to implement rigorous access controls, regularly review application permissions, and maintain robust monitoring to prevent future breaches.​​​​​​​​​​​​​​​​