Cyberattacks

Major Cyberattack Through Salesloft Drift Hits Cloudflare, Palo Alto Networks, and Hundreds More

Major tech firms hit in a Salesloft Drift supply chain attack; over 700 organizations affected, exposing sensitive data and credentials.

By Content Team

Sep 2, 2025

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

A massive supply chain attack through Salesloft Drift has compromised major tech companies including Cloudflare, Palo Alto Networks, Zscaler, and PagerDuty. Google's threat intelligence team says the 10-day campaign in August potentially hit over 700 organizations.

The attack group UNC6395 exploited integrations between Drift's AI chat platform and Salesforce to steal customer data. Exposed information includes business contact details, support case notes, and in some cases sensitive credentials and API tokens.

Salesloft is taking Drift offline completely to investigate and rebuild security. The timing is particularly awkward - the attack started just one day after Salesloft announced a merger with competitor Clari, creating a combined company serving 5,000+ organizations globally.

Source: CyberScoop

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Cyber Attack Forces Nuneaton School to Close for Three Days

Jan 16, 2026

Cisco Drops 48 New Firewall Vulnerabilities, 2 Critical

Mar 6, 2026

Google Patches Two Actively Exploited Chrome Zero-Days

Mar 13, 2026

Cyber Fraud Now Top CEO Fear, Overtaking Ransomware Threat

Jan 14, 2026