Salesloft is a tool tracked across 25 threat clusters and 47 intelligence report mentions on ThreatCluster. First observed November 6, 2025; most recent activity July 15, 2026.
In June 2026, a significant security incident involving Klue, a market intelligence platform, allowed the Icarus threat actor group to exfiltrate Salesforce CRM data from multiple organizations, including Huntress. The…
Between August 9 and August 17, 2025, the threat actor UNC6395 exploited stolen OAuth tokens from Salesloft's Drift integration to access Salesforce environments of over 700 organizations, including major tech firms.…
7-Eleven confirmed a cyberattack that occurred in April 2026, where unauthorized access to its internal systems exposed personal information linked to franchisee applications. The breach was claimed by the ShinyHunters…
In 2026, attackers are leveraging AI to rapidly develop and evolve phishing kits, significantly outpacing traditional detection methods that rely on blocklists and IoCs. Employees are increasingly adopting unvetted AI…
Telus Digital, a Canadian telecommunications and BPO provider, has confirmed a significant data breach involving the ShinyHunters hacking group. The attackers claim to have stolen approximately 1 petabyte of data,…
In March 2026, the ShinyHunters extortion group executed a data breach targeting the Infinite Campus K-12 student information system, compromising personal information of over 137,000 school staff accounts. The attack…
Pitney Bowes, a logistics technology company, has suffered a data breach confirmed by Have I Been Pwned (HIBP) on April 27, 2026. The breach involves the exposure of 8.2 million unique email addresses, along with names,…
A significant supply chain attack has compromised Salesforce-stored data from more than 200 companies through applications published by Gainsight. Salesforce confirmed unauthorized access to customer data and is…
Grubhub has confirmed a data breach where unauthorized actors accessed parts of its internal systems. The company is now facing extortion demands related to the stolen data. Grubhub stated that it quickly detected and…
OpenAI confirmed a data breach at its analytics provider, Mixpanel, which exposed limited analytics data linked to OpenAI API users. The breach involved unauthorized access to Mixpanel's systems, resulting in the export…