No Result
View All Result
SUBMIT YOUR ARTICLES
  • Login
Saturday, October 25, 2025
TheAdviserMagazine.com
  • Home
  • Financial Planning
    • Financial Planning
    • Personal Finance
  • Market Research
    • Business
    • Investing
    • Money
    • Economy
    • Markets
    • Stocks
    • Trading
  • 401k Plans
  • College
  • IRS & Taxes
  • Estate Plans
  • Social Security
  • Medicare
  • Legal
  • Home
  • Financial Planning
    • Financial Planning
    • Personal Finance
  • Market Research
    • Business
    • Investing
    • Money
    • Economy
    • Markets
    • Stocks
    • Trading
  • 401k Plans
  • College
  • IRS & Taxes
  • Estate Plans
  • Social Security
  • Medicare
  • Legal
No Result
View All Result
TheAdviserMagazine.com
No Result
View All Result
Home Market Research Market Analysis

The Abyss Of The Salesloft-Salesforce Breach May Reach The Challenger Deep

by TheAdviserMagazine
1 month ago
in Market Analysis
Reading Time: 3 mins read
A A
The Abyss Of The Salesloft-Salesforce Breach May Reach The Challenger Deep
Share on FacebookShare on TwitterShare on LInkedIn


News has been trickling out since August 20 about a security issue in Salesloft’s Drift product, a marketing and sales chatbot that integrates with CRM systems to capture and track sales opportunities. The issue started in March, when threat actors accessed Salesloft’s GitHub account and did reconnaissance, which helped them access Drift’s AWS environment and obtain OAuth tokens. From there, they accessed Drift customers’ Salesforce instances from August 8–18.

Salesforce has suffered repeated attacks this year where advanced persistent threats (APTs) compromised customer databases by targeting individual companies. This attack is much broader in terms of both scope and number of companies affected, as Drift is a popular tool used by over 700 companies. Its customers include several notable cybersecurity vendors such as Black Duck, Cloudflare, Okta, OneTrust, Palo Alto Networks, Proofpoint, and Zscaler.

What Data Was Compromised?

By design, Drift is meant to improve sales engagement with prospects and customers. Its integration with CRM systems lets Drift track leads, update CRM records, and trigger follow-up actions. Because of the Salesforce integration, the threat actors were able to access:

Sensitive information about client environments such as IP addresses, account information, and access tokens. These are stored in clear text within support case notes to make supporting that customer easier when a case is passed to multiple analysts, but for a hacker, this gives them critical access details to the client’s infrastructure.
Standard information about accounts such as client contact data, sales pipeline, support history, and business strategy. This information seems generic, but for social engineering campaigns, these are the details that threat actors need to make their engagement more believable.

Actions To Take Now To Reduce The Threat To Your Business

While Salesloft has reset the authentication tokens and temporarily disabled Drift, impacted businesses need to take further steps to protect themselves and their employees. After working with their third-party risk management program to define the scope of the breach, companies should take the following actions:

Revoke and rotate all API keys, credentials, and authentication tokens associated with the integration. Additionally, if your investigation of your Salesforce data uncovers any hardcoded secrets or exposed API keys/credentials, they must be rotated immediately. Establish a regular rotation schedule for all API keys and other secrets used in third-party integrations to reduce the window of exposure.
Tune tech and train teams for the social engineering onslaught. Various human-element breach types and tactics will spring up in the coming weeks and months based on the data that was extracted, requiring specific tech and process controls. Your email, messaging, and collaboration security solution and your employees should be tuned to spot the traditional signs of social engineering: authority, novelty, and urgency. Employees should be encouraged — and publicly praised — to pause in the face of these signs and seek additional verification before providing information or completing transactions.
Institute least privileged access controls on your data used by third parties. The guidance we’ve provided on SaaS security applies equally to app developers and customers to limit access to data to only what is needed for that function to execute. In this campaign, companies that restricted inbound access from approved IP addresses did not have their Salesforce data extracted, even though they were targeted. Utilize SaaS security posture management solutions to uncover the risks in your SaaS deployments and improve threat monitoring of your configurations within these apps to limit your exposure based on identified risks.
Secure your software supply chain. Start with an inventory of all software used in the development and delivery process; this includes open-source software tools and components. Ensure that dev environments, pipelines, and source-code management systems utilize Zero Trust principles, have phishing-resistant multifactor authentication enforced, enable branch protection, monitor for security misconfigurations, automate application security testing, and utilize a secrets management solution to avoid any credentials, tokens, or environment variables being passed in plaintext.
Define your incident escalation matrix. Delineate severity levels and assess materiality in the context of the regulatory requirements to which your organization is beholden. Socialize this matrix with all internal and external stakeholders, and work with outside counsel and your incident response service provider to develop executive and board tabletop exercises involving complex, cascading nth-party breach and breach notification scenarios.

Stay Tuned

Details continue to emerge from Salesloft as well as businesses directly impacted by the breach. Because we still don’t know how many companies were victims of data theft or the exact attack details, the total impact remains unclear. The security and risk team at Forrester will provide updates to help clients as new details come to light.



Source link

Tags: AbyssBreachchallengerDeepreachSalesloftSalesforce
ShareTweetShare
Previous Post

Microsoft: Startet jetzt der Angriff auf das Rekordhoch?

Next Post

Important takeaways from Adobe’s (ADBE) Q3 2025 earnings report

Related Posts

edit post
Where We Go Next After NY Climate Week

Where We Go Next After NY Climate Week

by TheAdviserMagazine
October 24, 2025
0

The 2025 New York climate week spurred discussions. What stood out for us was that everyone’s takeaways were rooted in...

edit post
What I’ve Found So Far

What I’ve Found So Far

by TheAdviserMagazine
October 24, 2025
0

Since July, I’ve attended the Hubspot Inbound, Oracle AI World, and SupportLogic’s Enterprise AI for CX conferences. I’ve also been...

edit post
Bitcoin: 2,000 Level Emerges as Key Resistance for Next Leg Higher

Bitcoin: $112,000 Level Emerges as Key Resistance for Next Leg Higher

by TheAdviserMagazine
October 24, 2025
0

Bitcoin holds above $106,000 support, showing signs of recovery within its price channel. A close above $115,000 could confirm a...

edit post
CPI Preview: Inflation Data Looms Amid Shutdown With Fed Decision on the Horizon

CPI Preview: Inflation Data Looms Amid Shutdown With Fed Decision on the Horizon

by TheAdviserMagazine
October 24, 2025
0

As markets await the September (CPI) report, set for release Friday at 8:30 AM ET, investors and policymakers face a...

edit post
Comprehensive Sodium-Ion Battery Market Analysis: Demand Forecast

Comprehensive Sodium-Ion Battery Market Analysis: Demand Forecast

by TheAdviserMagazine
October 24, 2025
0

The Sodium-Ion Battery Market is gaining momentum as industries seek sustainable, cost-effective, and resource-abundant alternatives to lithium-ion technology. With sodium...

edit post
10 Bargain Dividend Stocks Ready to Shine in a Falling-Interest-Rate Environment

10 Bargain Dividend Stocks Ready to Shine in a Falling-Interest-Rate Environment

by TheAdviserMagazine
October 23, 2025
0

With a Fed rate cut all but certain, dividend stocks are back in focus. Lower yields on cash and bonds...

Next Post
edit post
Important takeaways from Adobe’s (ADBE) Q3 2025 earnings report

Important takeaways from Adobe’s (ADBE) Q3 2025 earnings report

edit post
44% of People With This Debilitating Disease Don’t Know They Have It

44% of People With This Debilitating Disease Don’t Know They Have It

  • Trending
  • Comments
  • Latest
edit post
77-year-old popular furniture retailer closes store locations

77-year-old popular furniture retailer closes store locations

October 18, 2025
edit post
Pennsylvania House of Representatives Rejects Update to Child Custody Laws

Pennsylvania House of Representatives Rejects Update to Child Custody Laws

October 7, 2025
edit post
What to Do When a Loved One Dies in North Carolina

What to Do When a Loved One Dies in North Carolina

October 8, 2025
edit post
Probate vs. Non-Probate Assets: What’s the Difference?

Probate vs. Non-Probate Assets: What’s the Difference?

October 17, 2025
edit post
California Attorney Pleads Guilty For Role In 2M Ponzi Scheme

California Attorney Pleads Guilty For Role In $912M Ponzi Scheme

October 15, 2025
edit post
Baby Boomers Are Flocking to This Florida Town — but Not for the Weather

Baby Boomers Are Flocking to This Florida Town — but Not for the Weather

October 9, 2025
edit post
LendingClub, ABTC surge, Bitfarms, FHI slide: financials wrap

LendingClub, ABTC surge, Bitfarms, FHI slide: financials wrap

0
edit post
I helped design rocket engines for NASA’s space shuttles. Here’s why businesses need AI as trustworthy as aerospace tech

I helped design rocket engines for NASA’s space shuttles. Here’s why businesses need AI as trustworthy as aerospace tech

0
edit post
A Brief History of the Enduring American Embargo against Cuba

A Brief History of the Enduring American Embargo against Cuba

0
edit post
Starboard aims to unlock the value of Fluor’s investment in nuclear tech company NuScale

Starboard aims to unlock the value of Fluor’s investment in nuclear tech company NuScale

0
edit post
UK crypto investors face crackdown on unreported gains 

UK crypto investors face crackdown on unreported gains 

0
edit post
Arizona Heat, Bigger Bills: 7 Utility Hacks That Actually Cut Costs for Fixed-Income Retirees

Arizona Heat, Bigger Bills: 7 Utility Hacks That Actually Cut Costs for Fixed-Income Retirees

0
edit post
A Brief History of the Enduring American Embargo against Cuba

A Brief History of the Enduring American Embargo against Cuba

October 25, 2025
edit post
LendingClub, ABTC surge, Bitfarms, FHI slide: financials wrap

LendingClub, ABTC surge, Bitfarms, FHI slide: financials wrap

October 25, 2025
edit post
Hotstocks KW 43 / 2025 – Solaraktien für mehr Sonne im Depot!

Hotstocks KW 43 / 2025 – Solaraktien für mehr Sonne im Depot!

October 25, 2025
edit post
Insiders Are Scooping Up Shares of a Miner, a Driller, and a Biotech

Insiders Are Scooping Up Shares of a Miner, a Driller, and a Biotech

October 25, 2025
edit post
UK crypto investors face crackdown on unreported gains 

UK crypto investors face crackdown on unreported gains 

October 25, 2025
edit post
I helped design rocket engines for NASA’s space shuttles. Here’s why businesses need AI as trustworthy as aerospace tech

I helped design rocket engines for NASA’s space shuttles. Here’s why businesses need AI as trustworthy as aerospace tech

October 25, 2025
The Adviser Magazine

The first and only national digital and print magazine that connects individuals, families, and businesses to Fee-Only financial advisers, accountants, attorneys and college guidance counselors.

CATEGORIES

  • 401k Plans
  • Business
  • College
  • Cryptocurrency
  • Economy
  • Estate Plans
  • Financial Planning
  • Investing
  • IRS & Taxes
  • Legal
  • Market Analysis
  • Markets
  • Medicare
  • Money
  • Personal Finance
  • Social Security
  • Startups
  • Stock Market
  • Trading

LATEST UPDATES

  • A Brief History of the Enduring American Embargo against Cuba
  • LendingClub, ABTC surge, Bitfarms, FHI slide: financials wrap
  • Hotstocks KW 43 / 2025 – Solaraktien für mehr Sonne im Depot!
  • Our Great Privacy Policy
  • Terms of Use, Legal Notices & Disclosures
  • Contact us
  • About Us

© Copyright 2024 All Rights Reserved
See articles for original source and related links to external sites.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Home
  • Financial Planning
    • Financial Planning
    • Personal Finance
  • Market Research
    • Business
    • Investing
    • Money
    • Economy
    • Markets
    • Stocks
    • Trading
  • 401k Plans
  • College
  • IRS & Taxes
  • Estate Plans
  • Social Security
  • Medicare
  • Legal

© Copyright 2024 All Rights Reserved
See articles for original source and related links to external sites.