Cyberattacks

Major Cyberattack Through Salesloft Drift Hits Cloudflare, Palo Alto Networks, and Hundreds More

Major tech firms hit in a Salesloft Drift supply chain attack; over 700 organizations affected, exposing sensitive data and credentials.

By Content Team

Sep 2, 2025

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

A massive supply chain attack through Salesloft Drift has compromised major tech companies including Cloudflare, Palo Alto Networks, Zscaler, and PagerDuty. Google's threat intelligence team says the 10-day campaign in August potentially hit over 700 organizations.

The attack group UNC6395 exploited integrations between Drift's AI chat platform and Salesforce to steal customer data. Exposed information includes business contact details, support case notes, and in some cases sensitive credentials and API tokens.

Salesloft is taking Drift offline completely to investigate and rebuild security. The timing is particularly awkward - the attack started just one day after Salesloft announced a merger with competitor Clari, creating a combined company serving 5,000+ organizations globally.

Source: CyberScoop

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Notepad++ Update System Hijacked in Months-Long Supply Chain Attack

Feb 7, 2026

Microsoft Rushes Emergency Patch for Office Zero-Day Under Active Attack

Jan 28, 2026

GhostAction Supply Chain Attack Steals 3,000+ Secrets from GitHub Repositories

Dec 26, 2025

574 Arrested in Major African Cybercrime Crackdown

Dec 25, 2025