Salesloft confirms GitHub breach enabled hackers to steal Drift customer data through OAuth token compromise.
Matilda
Salesloft GitHub Breach Leads To Drift Data Theft Salesloft GitHub Breach Leads To Drift Customer Data Theft Salesloft has confirmed that a breach of its GitHub account in March 2025 led to the theft of authentication tokens later used to target Drift customers. According to the company, attackers maintained unauthorized access for months, carrying out reconnaissance and downloading data from multiple repositories. This breach eventually enabled hackers to infiltrate Drift’s systems and steal sensitive OAuth tokens, raising concerns about data protection and the handling of customer security. Image Credits:Andrew Brookes Salesloft GitHub Breach Timeline Raises Security Questions
Investigations revealed that the Salesloft GitHub breach began in March and went undetected until June. During this time, hackers were able to add guest users, establish workflows, and exfiltrate content from private repositories. The delayed detection has sparked questions about the company’s overall cybersecurity measures and why it took months to identify sus…
