Tag Snowflake

6 Browser-Based Threats Security Teams Must Address Immediately

Rising Threat of Browser-Based Attacks: Understanding the Risks and Targets In recent years, there has been a marked increase in attacks targeting users through their web browsers. This article delves into the concept of browser-based attacks, their mechanics, and the various threats posed to organizations. As employees become more accessible…

Read More6 Browser-Based Threats Security Teams Must Address Immediately

LAPSUS$ Hunters Announce Shutdown

Cybercrime, Fraud Management & Cybercrime, Social Engineering Skepticism Surrounds Announcement from Cybercriminal Group Akshaya Asokan • September 12, 2025 Image: Shutterstock A group of teenage hackers, known for targeting airlines, insurance firms, and casinos in both the United Kingdom and United States, has announced the cessation of their activities. Their…

Read MoreLAPSUS$ Hunters Announce Shutdown

How Emerging AI Agents Will Revolutionize Credential Stuffing Attacks

Rising Threat of Credential Stuffing Attacks in 2024 In 2024, credential stuffing attacks have emerged as a significant cybersecurity concern, driven by a troubling cycle of infostealer malware infections and data breaches. The situation, already precarious, is poised to worsen with the advent of Computer-Using Agents (CUAs), a novel class…

Read MoreHow Emerging AI Agents Will Revolutionize Credential Stuffing Attacks

Cloudflare Acknowledges Data Breach Associated with Salesloft Drift Supply Chain Compromise

Cloudflare Confirms Impact from Salesloft Drift Breach On Tuesday, Cloudflare disclosed its involvement in the Salesloft Drift breach, confirming that cybercriminals obtained 104 API tokens associated with its platform. Despite the breach, Cloudflare’s security team, led by Sourov Zaman, Craig Strubhart, and Grant Bourzikas, reported no detected suspicious activity linked…

Read MoreCloudflare Acknowledges Data Breach Associated with Salesloft Drift Supply Chain Compromise

The Continued Consequences of a Breach at AI Chatbot Developer Salesloft – Krebs on Security

Salesloft Authentication Token Breach Exposes Corporate Vulnerabilities Recent developments in cybersecurity have raised alarms among businesses utilizing Salesloft, a platform that streamlines customer interactions into actionable leads for Salesforce. A significant breach involving the theft of authentication tokens from Salesloft has prompted fast action from numerous companies as they scramble…

Read MoreThe Continued Consequences of a Breach at AI Chatbot Developer Salesloft – Krebs on Security

Google Exposes OAuth Token Theft Linked to UNC6395 in Salesforce Breach

A recent advisory from Google and Mandiant has uncovered a significant data breach involving Salesforce, where the threat actor UNC6395 deployed stolen OAuth tokens to bypass Multi-Factor Authentication (MFA). Organizations are urged to take steps to protect non-human identities to prevent similar breaches. According to the advisory from the Google…

Read MoreGoogle Exposes OAuth Token Theft Linked to UNC6395 in Salesforce Breach

Salesloft and Drift Breached: OAuth Tokens Stolen and Salesforce Corporate Data Exfiltrated

A significant data breach involving corporate Salesforce instances has emerged, with hackers exploiting compromised OAuth tokens associated with the Salesloft Drift application. This sophisticated exfiltration campaign has led to the exposure of sensitive data from numerous organizations. The threat group, identified as UNC6395, executed their operations between August 8 and…

Read MoreSalesloft and Drift Breached: OAuth Tokens Stolen and Salesforce Corporate Data Exfiltrated