Disruption in Salesloft Drift's Supply Chain Operations
Qualys Responds to Salesloft/Drift Security Incident
In a recent development, Qualys, a leading cybersecurity company, has been affected by a large-scale cyberattack that impacted Salesloft customers, including Qualys itself. The incident, which took place between August 8 and 18, 2025, was a sophisticated attack that exploited stolen OAuth tokens from Salesloft's owned Drift application.
The attack allowed unauthorized access to hundreds of corporate Salesforce environments, resulting in the theft of sensitive data. Attackers used social engineering and technical exploits to obtain these tokens and moved laterally within cloud environments, prompting Salesloft to take Drift offline and revoke all tokens.
Despite the incident, Qualys wants to assure its customers that all its platforms continue to be fully functional, and there was no operational impact during the incident. The company immediately activated its incident response plan upon learning of the incident and is working closely with Salesforce to contain any potential unauthorized access.
Qualys has also disabled all Drift integrations with Qualys' Salesforce data to further secure its systems. The stolen OAuth tokens granted limited access to some Qualys Salesforce information, but there is no impact on the Qualys production environments (shared platforms and private platforms), codebase, or customer data hosted on the Qualys Cloud Platform, Qualys Agents or Scanners.
In response to the incident, Qualys has posted updates on its "Vulnerabilities and Threat Research" and "Qualys Insights" blogs. The company is committed to enhancing security and providing strong protections for its customers. It will continue to investigate and monitor the security incident and will notify its customers if relevant information becomes available.
For further information, customers are encouraged to contact the Qualys security team at security_advisories@our socials.com. It's important to note that the incident involved a widespread Salesloft/Drift supply chain attack that impacted third-party integrations with Drift. Qualys maintains a blog called "Qualys Insights" where updates on the ongoing investigation can be found.
Qualys remains committed to its mission of protecting its customers from cyber threats and will continue to take all necessary steps to ensure the security of its platforms and services.
Read also:
- Navigating the Path to Tech Product Success: Expert Insights from Delasport, a Trailblazer in the Tech Industry
- Online Cyber Assaults May Deter Web Usage Among Younger Generations
- Navigating English for Common Tech and Devices Daily Use
- Enhanced Privacy Technologies in Data Transmission and Internet Infrastructure
