CSOonline

Attackers steal data from Salesforce instances via compromised AI live chat tool

A threat actor managed to obtain Salesforce OAuth tokens from a third-party integration called Salesloft Drift and used the tokens to download large volumes of data from impacted Salesforce instances.
Hosted on MSN

Salesforce Probes Gainsight OAuth Anomalies as SaaS Token Attacks Escalate

Salesforce is looking into unusual OAuth activity associated with Gainsight integrations after observing behavior that might have revealed customer data. Initial indications suggest a deliberate ...