Salesforce Security Breach: Cloudflare and Palo Alto Networks Caught in Data Heist Drama

Cloudflare and Palo Alto Networks have confessed that their Salesforce data was accessed by threat actors through the Salesloft Drift app. This data heist involved customer support tickets, business contact information, and more. Cloudflare’s advice? Rotate those credentials faster than a DJ spins records, because everything shared is now compromised.

3P
Published: September 3, 2025 11:09 amAdded: September 3, 2025 at 4:23 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Looks like Cloudflare and Palo Alto Networks have just learned that letting your Salesforce data hang out with a shady app is as risky as letting a toddler loose in a candy store. Cue the sugar crash of stolen data!

Key Points:

  • Cloudflare and Palo Alto Networks were both victims of a Salesforce data breach.
  • The breach was executed via the Salesloft Drift app, affecting multiple companies.
  • Cloudflare’s compromised data was limited to support tickets and associated customer information.
  • Palo Alto Networks’ compromised data included business contacts and basic customer case data.
  • The threat actor, identified as UNC6395, might launch targeted attacks using the stolen data.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?