Salesloft’s GitHub Gaffe: Hackers Swipe Tokens, Tech Titans Targeted

Hackers breached Salesloft’s GitHub in March, stealing authentication tokens for a mass attack on tech giants like Google and Cloudflare. While the incident is now contained, the six-month delay in detection raises serious security eyebrows. Remember, folks, even in the digital world, timing is everything—even for hackers!

3P
Published: September 8, 2025 8:37 pmAdded: September 8, 2025 at 1:41 pmAssembled by: The Editor
Pro Dashboard

Hot Take:

Salesloft’s GitHub breach is the latest episode in the never-ending soap opera of cybersecurity mishaps. If hackers were on a heist reality TV show, they’d be up for an Emmy for this production. Salesloft’s GitHub was the stage, the hackers were the stars, and the OAuth tokens were the coveted prize. Too bad for Salesloft, this isn’t the kind of publicity that wins awards – just a bunch of facepalms and head shakes.

Key Points:

  • UNC6395 breached Salesloft’s GitHub and stole authentication tokens.
  • Major tech customers like Google, Zscaler, and Cloudflare were affected.
  • Mandiant discovered a six-month-long reconnaissance and breach.
  • Salesloft has taken steps to contain the breach and secure its platforms.
  • Drift’s integrations remain offline, awaiting further security assurances.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?