SaaS Data Theft Attack Update
Threat Profiles & Threat Objects
- “Trending & Emerging Threats” weekly update: SaaS Data Theft Attack Update
- In our August 28 update, we highlighted a new Campaign object covering “widespread data theft” activity impacting Salesforce integrations with Salesloft Drift AI chat technology.
- We updated the object following the release of additional technical details, and are featuring it in this week’s Threat Profile update.
- Responders indicated that the scope of the attack was almost certainly wider than initially indicated, impacting a wide range of integrations with the Drift platform, not just the Salesforce one.
- In our August 28 update, we highlighted a new Campaign object covering “widespread data theft” activity impacting Salesforce integrations with Salesloft Drift AI chat technology.
- Large-scale supply chain compromise: New Campaign object added covering the npm JavaScript package compromises making headlines this week.
- The incident received attention due to its potential scale (in total, the affected packages account for more than two billion downloads per week), although it was relatively quickly identified and contained.