The Biden administration has classified certain spyware used for phone hacking as highly controversial, leading to strict limitations on its use by the US government in an executive order issued in March 2024. As the Trump administration takes steps to enhance immigration enforcement, this landscape could shift dramatically, paving the…
Bridgestone has confirmed that a cyberattack has disrupted operations at some of its manufacturing facilities. This article examines the implications for employees, includes expert insights, and highlights the suspected hacking group, Scattered Lapsus$ Hunters. Bridgestone, the leading tire manufacturer globally by output, has launched an investigation into a cyberattack affecting…
Wealthsimple Reports Security Breach Affecting Customers’ Personal Information Wealthsimple, a prominent FinTech company, has disclosed a security incident that compromised the personal information of certain customers following a breach on August 30. The firm has confirmed that significantly fewer than one percent of its 3 million clients were affected, which…
Proofpoint, Tenable, CyberArk Targeted in Salesforce Data Breach In a significant cybersecurity incident, Proofpoint, Tenable, and CyberArk have reportedly been affected by a breach stemming from a third-party vulnerability within Salesforce. This breach highlights the ongoing risks associated with third-party integrations in cloud-based platforms, raising concerns among organizations that rely…
More Cybersecurity Firms Targeted in Salesforce-Salesloft Drift Breach In a significant cybersecurity incident, a number of companies, particularly those in the cybersecurity sector, have experienced breaches linked to the Salesforce and Salesloft platforms. This alarming development highlights ongoing vulnerabilities that can have profound implications for data security across industries. The…
Cybersecurity firm Zscaler has reported a significant data breach that has compromised customer contact information. This breach occurred when unauthorized individuals gained access to Zscaler’s Salesforce database utilizing compromised credentials from a third-party application. The incident is part of a wider campaign that specifically targeted Salesloft Drift, a marketing automation…
Cybercrime, Fraud Management & Cybercrime, Identity & Access Management Extent of Breach Still Unfolding; Reports Indicate Hundreds of Organizations Impacted Mathew J. Schwartz (euroinfosec) • September 3, 2025 Image: Shutterstock A series of data breaches linked to the theft of access tokens from the marketing software provider Salesloft’s Drift AI…
Cloudflare Confirms Impact from Salesloft Drift Breach On Tuesday, Cloudflare disclosed its involvement in the Salesloft Drift breach, confirming that cybercriminals obtained 104 API tokens associated with its platform. Despite the breach, Cloudflare’s security team, led by Sourov Zaman, Craig Strubhart, and Grant Bourzikas, reported no detected suspicious activity linked…
Cloudflare has publicly acknowledged a security incident involving its Salesforce environment, traced back to the breach of the Salesloft Drift integration. An advanced threat actor, known as GRUB1, exploited OAuth credentials associated with this integration to extract sensitive support case data. While crucial Cloudflare services remained unaffected, the breach did…
