Salesforce Data Breach: 1.5 Billion Records Exposed in Massive Hack
Cybersecurity experts have raised alarm over a significant data breach affecting Salesforce CRM systems. The hacker group UNC6395 is suspected of infiltrating the AI service Salesloft Drift, potentially exposing 1.5 billion records from around 760 companies. Major cybersecurity firms have confirmed breaches, and the FBI has issued warnings.
The attack, believed to have occurred in September 2025, exploited stolen OAuth tokens and vulnerabilities in third-party integrations. The stolen data includes a vast amount of sensitive information, such as 580 million 'Contacts', 460 million 'Cases', and 250 million 'Accounts' records. Cloudflare has warned that support data containing access tokens may also have been compromised.
The full scope of the breach is still being investigated, with hundreds of other companies potentially affected. The 'Cases' database, in particular, could contain sensitive data from recorded support tickets. Cybercriminals have also stolen authentication tokens of the Salesloft Drift platform, allowing them to gain unauthorized access to systems.
The FBI has warned of the hacker groups involved in the Salesloft Drift attack. Platform operators have issued recommendations to mitigate further damage. As investigations continue, the public is urged to remain vigilant and follow official cybersecurity guidance.
Read also:
- Web3 social arcade extends Pixelverse's tap-to-earn feature beyond Telegram to Base and Farcaster platforms.
- Over 5,600 Road Safety Violations Caught in Manchester Trial
- Jaguar Land Rover Resumes Production After Cyberattack, UK Govt & Banks Provide £3.5B Support
- Jaguar Land Rover's Cyberattack Halts Production, Impacting 100,000 Jobs
