#oauthattack zoekresultaten
CoPhish exploits Microsoft Copilot Studio to redirect users through OAuth consent flows on official domains, stealing tokens via HTTP actions in Entra ID tenants and admin roles. #OAuthAttack #MicrosoftSecurity #EntraID ift.tt/MfZCsHu
hendryadrian.com
CoPhish: Using Microsoft Copilot Studio as a wrapper for OAuth phishing
Copilot Studio agents can be configured to redirect users to arbitrary OAuth consent flows and exfiltrate tokens, enabling OAuth phishing attacks that leverage legitimate Microsoft domains and...
FBI alerts on UNC6040 and UNC6395 targeting Salesforce for data theft and extortion via social engineering, vishing, and compromised OAuth tokens in Salesloft Drift app. MFA, credential rotation, and API monitoring advised. #DataTheft #OAuthAttack ift.tt/k0hI3Bd
hendryadrian.com
FBI Warns of Salesforce attacks by UNC6040 and UNC6395
The FBI has issued a warning about cybercriminal groups UNC6040 and UNC6395 targeting Salesforce platforms for data theft and extortion, using techniques like social engineering and compromised OAuth...
Attackers automate creation of malicious internal OAuth apps in Microsoft Entra ID tenants to maintain persistent access, bypassing password resets and MFA. Linked to AiTM Tycoon phishing campaigns. #OAuthAttack #CloudAccess #USA ift.tt/v6WBFeo
SolarWinds warns of a Salesforce data breach via compromised OAuth tokens linked to Salesloft Drift integration. Data from Google, Cloudflare, and Palo Alto Networks was stolen by threat group UNC6395. #SalesforceBreach #OAuthAttack #USA ift.tt/CzqhNRn
Hackers from UNC6395 exploited compromised OAuth tokens to breach ~700 Salesforce customer instances, targeting mainly those using Drift. Salesloft revoked tokens and urged re-authentication. #OAuthAttack #DataTheft #USA ift.tt/Tf2Mz3G
hendryadrian.com
Hundreds of Salesforce Customers Hit by Widespread Data Theft Campaign
Hackers exploited compromised OAuth tokens to access hundreds of Salesforce customer instances in a targeted campaign. The threat actor, UNC6395, aimed to harvest credentials and sensitive data,...
A cyberattack exploited OAuth tokens via Salesloft’s Drift AI chat to access Salesforce data, targeting hundreds of tenants and exposing sensitive info. Tokens revoked and apps removed to contain breach. #OAuthAttack #SupplyChain #USA ift.tt/dDncKJt
Zscaler suffered a data breach after threat actors accessed its Salesforce via stolen OAuth tokens linked to Salesloft Drift. Customer info like names, emails, and support cases were exposed. #DataBreach #OAuthAttack #USA ift.tt/Grtwegs
hendryadrian.com
Zscaler data breach exposes customer info after Salesloft Drift compromise
Zscaler reports a data breach caused by threat actors accessing its Salesforce instance through stolen credentials linked to the Salesloft Drift attack. The incident exposed customer information,...
Between Aug 8-18, 2025, attackers exploited OAuth credentials in Salesloft-Drift integration to extract large volumes of Salesforce data including Account, Contact, Case, and Opportunity records. #Salesloft #OAuthAttack #DataExfiltration ift.tt/DrEy2Md
hendryadrian.com
Threat Brief: Salesloft Drift Integration Used To Compromise Salesforce Instances
Between August 8–18, 2025, a threat actor used compromised OAuth credentials in the Salesloft-Drift integration to exfiltrate large volumes of Salesforce data (Account, Contact, Case, Opportunity)...
Google confirms a data theft campaign used compromised OAuth tokens to access Salesforce via Salesloft Drift integration, affecting Google Workspace accounts too. Tokens revoked and security reviews underway. #SalesforceData #OAuthAttack #UNC6395 ift.tt/qtDJWAb
Google and Mandiant expose extensive OAuth token breach via Salesloft Drift affecting Salesforce and Google Workspace integrations. Affected tokens revoked; organizations reviewing third-party apps. #CloudBreach #OAuthAttack #USA ift.tt/LdH2nEz
FBI and DHS/CISA alert: Cybercriminal groups UNC6040 and UNC6395 are targeting Salesforce via vishing, API exploits, and compromised OAuth tokens. Organizations should monitor for signs of compromise. #UNC6040 #OAuthAttack #USA ift.tt/pHsuUCB
hendryadrian.com
FBI Alert: Two Cybercriminal Groups Are Actively Compromising Salesforce
The FBI and DHS/CISA have issued an alert about cybercriminal groups UNC6040 and UNC6395 targeting Salesforce data through vishing, API exploitation, and compromised OAuth tokens. Organizations are...
Over 700 organizations, including top security firms, were hit in the Salesforce–Salesloft Drift breach exposing OAuth tokens and sensitive data like access keys and passwords. Disclosed by Google on Aug 26. #DataBreach #OAuthAttack #USA ift.tt/Pjr8nD6
AIMindUpdate News! Thousands of developers were hit by an OAuth attack! Your identity is the new perimeter. #DevOpsSecurity #OAuthAttack #IdentitySecurity Click here↓↓↓ aimindupdate.com/2025/08/28/ide…
Attackers automate creation of malicious internal OAuth apps in Microsoft Entra ID tenants to maintain persistent access, bypassing password resets and MFA. Linked to AiTM Tycoon phishing campaigns. #OAuthAttack #CloudAccess #USA ift.tt/v6WBFeo
CoPhish exploits Microsoft Copilot Studio to redirect users through OAuth consent flows on official domains, stealing tokens via HTTP actions in Entra ID tenants and admin roles. #OAuthAttack #MicrosoftSecurity #EntraID ift.tt/MfZCsHu
hendryadrian.com
CoPhish: Using Microsoft Copilot Studio as a wrapper for OAuth phishing
Copilot Studio agents can be configured to redirect users to arbitrary OAuth consent flows and exfiltrate tokens, enabling OAuth phishing attacks that leverage legitimate Microsoft domains and...
SolarWinds warns of a Salesforce data breach via compromised OAuth tokens linked to Salesloft Drift integration. Data from Google, Cloudflare, and Palo Alto Networks was stolen by threat group UNC6395. #SalesforceBreach #OAuthAttack #USA ift.tt/CzqhNRn
FBI alerts on UNC6040 and UNC6395 targeting Salesforce for data theft and extortion via social engineering, vishing, and compromised OAuth tokens in Salesloft Drift app. MFA, credential rotation, and API monitoring advised. #DataTheft #OAuthAttack ift.tt/k0hI3Bd
hendryadrian.com
FBI Warns of Salesforce attacks by UNC6040 and UNC6395
The FBI has issued a warning about cybercriminal groups UNC6040 and UNC6395 targeting Salesforce platforms for data theft and extortion, using techniques like social engineering and compromised OAuth...
FBI and DHS/CISA alert: Cybercriminal groups UNC6040 and UNC6395 are targeting Salesforce via vishing, API exploits, and compromised OAuth tokens. Organizations should monitor for signs of compromise. #UNC6040 #OAuthAttack #USA ift.tt/pHsuUCB
hendryadrian.com
FBI Alert: Two Cybercriminal Groups Are Actively Compromising Salesforce
The FBI and DHS/CISA have issued an alert about cybercriminal groups UNC6040 and UNC6395 targeting Salesforce data through vishing, API exploitation, and compromised OAuth tokens. Organizations are...
Over 700 organizations, including top security firms, were hit in the Salesforce–Salesloft Drift breach exposing OAuth tokens and sensitive data like access keys and passwords. Disclosed by Google on Aug 26. #DataBreach #OAuthAttack #USA ift.tt/Pjr8nD6
Between Aug 8-18, 2025, attackers exploited OAuth credentials in Salesloft-Drift integration to extract large volumes of Salesforce data including Account, Contact, Case, and Opportunity records. #Salesloft #OAuthAttack #DataExfiltration ift.tt/DrEy2Md
hendryadrian.com
Threat Brief: Salesloft Drift Integration Used To Compromise Salesforce Instances
Between August 8–18, 2025, a threat actor used compromised OAuth credentials in the Salesloft-Drift integration to exfiltrate large volumes of Salesforce data (Account, Contact, Case, Opportunity)...
Zscaler suffered a data breach after threat actors accessed its Salesforce via stolen OAuth tokens linked to Salesloft Drift. Customer info like names, emails, and support cases were exposed. #DataBreach #OAuthAttack #USA ift.tt/Grtwegs
hendryadrian.com
Zscaler data breach exposes customer info after Salesloft Drift compromise
Zscaler reports a data breach caused by threat actors accessing its Salesforce instance through stolen credentials linked to the Salesloft Drift attack. The incident exposed customer information,...
Google confirms a data theft campaign used compromised OAuth tokens to access Salesforce via Salesloft Drift integration, affecting Google Workspace accounts too. Tokens revoked and security reviews underway. #SalesforceData #OAuthAttack #UNC6395 ift.tt/qtDJWAb
Google and Mandiant expose extensive OAuth token breach via Salesloft Drift affecting Salesforce and Google Workspace integrations. Affected tokens revoked; organizations reviewing third-party apps. #CloudBreach #OAuthAttack #USA ift.tt/LdH2nEz
AIMindUpdate News! Thousands of developers were hit by an OAuth attack! Your identity is the new perimeter. #DevOpsSecurity #OAuthAttack #IdentitySecurity Click here↓↓↓ aimindupdate.com/2025/08/28/ide…
Hackers from UNC6395 exploited compromised OAuth tokens to breach ~700 Salesforce customer instances, targeting mainly those using Drift. Salesloft revoked tokens and urged re-authentication. #OAuthAttack #DataTheft #USA ift.tt/Tf2Mz3G
hendryadrian.com
Hundreds of Salesforce Customers Hit by Widespread Data Theft Campaign
Hackers exploited compromised OAuth tokens to access hundreds of Salesforce customer instances in a targeted campaign. The threat actor, UNC6395, aimed to harvest credentials and sensitive data,...
A cyberattack exploited OAuth tokens via Salesloft’s Drift AI chat to access Salesforce data, targeting hundreds of tenants and exposing sensitive info. Tokens revoked and apps removed to contain breach. #OAuthAttack #SupplyChain #USA ift.tt/dDncKJt
OAuth Attacks Target Microsoft 365 & GitHub – What You Need to Know! Read The Full Article Here: technijian.com/microsoft/oaut… #OAuthAttack #Microsoft365 #GitHubSecurity #CyberSecurity #InfoSec #TokenHijacking #CloudSecurity #CyberThreats #TechNews #HackingNews
AIMindUpdate News! Thousands of developers were hit by an OAuth attack! Your identity is the new perimeter. #DevOpsSecurity #OAuthAttack #IdentitySecurity Click here↓↓↓ aimindupdate.com/2025/08/28/ide…
Something went wrong.
Something went wrong.
United States Trends
- 1. Jokic 25.6K posts
- 2. Lakers 53.7K posts
- 3. Epstein 1.66M posts
- 4. #AEWDynamite 50K posts
- 5. #River 4,949 posts
- 6. Clippers 14.4K posts
- 7. Nemec 3,312 posts
- 8. Shai 16.4K posts
- 9. #ReasonableDoubtHulu N/A
- 10. Thunder 42.4K posts
- 11. #NJDevils 3,107 posts
- 12. Markstrom 1,251 posts
- 13. Ty Lue 1,113 posts
- 14. #Blackhawks 1,600 posts
- 15. Nemo 8,790 posts
- 16. Lafferty N/A
- 17. Mikey 71.5K posts
- 18. Rory 8,109 posts
- 19. Jordan Miller N/A
- 20. Steph 30K posts