Zscaler’s Salesforce Slip: Data Breach Drama Unveils Salesloft Drift Debacle!

Zscaler recently revealed that customer data was exposed due to the Salesloft Drift attacks on Salesforce. The data breach involved the theft of OAuth tokens, allowing hackers to access sensitive information. Zscaler recommends revoking Salesloft Drift access and rotating API tokens to secure Salesforce data. So, maybe rethink that trust fall with third-party apps.

3P
Published: September 2, 2025 6:23 pmAdded: September 2, 2025 at 11:51 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Oh dear, it seems that the cybercriminals are having a field day with Salesforce integrations! What’s next, a heist at the local CRM store? Zscaler’s data slip-up is just another entry on the cybercriminals’ hit list, proving once again that even the cloud can have cloudy days.

Key Points:

  • Zscaler’s customer data was exposed due to Salesloft Drift attacks affecting Salesforce.
  • Information stolen includes business emails, job titles, and product licensing info.
  • The security breach occurred between August 8 and August 18, involving OAuth tokens.
  • ShinyHunters group suspected of orchestrating the data theft.
  • Zscaler advises revoking and rotating credentials to prevent further exposure.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?