Palo Alto Networks Hit by Data Breach Linked to Salesloft Drift Incident
Palo Alto Networks has disclosed a data breach linked to the Salesloft Drift incident. The breach exposed business contact information, internal sales data, and customer support cases. The cyberattack was carried out by hacker groups Shinyhunters and UNC6395.
The breach occurred when threat actors mass-exfiltrated Salesforce data and scanned for credentials. They hid their traces and gained access to customer data and support cases via stolen OAuth tokens. Palo Alto Networks, along with Google and Zscaler, are among hundreds hit in this supply-chain attack.
The company promptly disconnected the vendor from its Salesforce environment and launched an investigation. They rotated all exposed credentials and confirmed that no Palo Alto Networks products or services were impacted. The data involved includes mostly business contact information, internal sales account, and basic case data related to customers.
The breach, carried out by Shinyhunters and UNC6395, has affected prominent companies like Palo Alto Networks, Google, and Zscaler. While the breach exposed sensitive data, Palo Alto Networks' prompt response ensures that their products and services remain secure and fully operational.
Read also:
- American teenagers taking up farming roles previously filled by immigrants, a concept revisited from 1965's labor market shift.
- Weekly affairs in the German Federal Parliament (Bundestag)
- Landslide claims seven lives, injures six individuals while they work to restore a water channel in the northern region of Pakistan
- Escalating conflict in Sudan has prompted the United Nations to announce a critical gender crisis, highlighting the disproportionate impact of the ongoing violence on women and girls.
