Topics

Salesloft says Drift customer data thefts linked to March GitHub account hack

Contact Us

Join 10k+ tech and VC leaders for growth and connections at Disrupt 2025

Netflix, Box, a16z, ElevenLabs, Wayve, Sequoia Capital, Elad Gil — just some of the 250+ heavy hitters leading 200+ sessions designed to deliver the insights that fuel startup growth and sharpen your edge. Don’t miss the 20th anniversary of TechCrunch, and a chance to learn from the top voices in tech. Grab your ticket before Sept 26 to save up to $668.

Join 10k+ tech and VC leaders for growth and connections at Disrupt 2025

Netflix, Box, a16z, ElevenLabs, Wayve, Sequoia Capital, Elad Gil — just some of the 250+ heavy hitters leading 200+ sessions designed to deliver the insights that fuel startup growth and sharpen your edge. Don’t miss the 20th anniversary of TechCrunch, and a chance to learn from the top voices in tech. Grab your ticket before Sept 26 to save up to $668.

Most Popular

Musk’s $1T pay package is full of watered-down versions of his own broken promises

Scale AI’s former CTO launches AI agent that could solve big data’s biggest problem

OpenAI announces AI-powered hiring platform to take on LinkedIn

Google brings Material 3 Expressive to Pixel 6 and newer devices, along with other features

Tesla’s 4th ‘Master Plan’ reads like LLM-generated nonsense

BMW, I am so breaking up with you

US and Indian VCs just formed a $1B+ alliance to fund India’s deep tech startups

Latest

Amazon

Apps

Biotech & Health

Climate

Cloud Computing

Commerce

Crypto

Enterprise

EVs

Fintech

Fundraising

Gadgets

Gaming

Google

Government & Policy

Hardware

Instagram

Layoffs

Media & Entertainment

Meta

Microsoft

Privacy

Robotics

Security

Social

Space

Startups

TikTok

Transportation

Venture

Events

Startup Battlefield

StrictlyVC

Newsletters

Podcasts

Videos

Partner Content

TechCrunch Brand Studio

Crunchboard

Salesloft says Drift customer data thefts linked to March GitHub account hack Lorenzo Franceschi-Bicchierai AM PDT · September 8, 2025 Salesloft said a breach of its GitHub account in March allowed hackers to steal authentication tokens that were later used in a mass-hack targeting several of its big tech customers.

Citing an investigation

The timeline raises fresh questions about the company’s security posture, including why it took Salesloft some six months to detect the intrusion.

Salesloft said that the incident is now “contained.”

Contact Us Do you have more information about these data breaches? From a non-work device, you can contact Lorenzo Franceschi-Bicchierai securely on Signal at +1 917 257 1382, or via Telegram and Keybase , or email. You also can contact TechCrunch via SecureDrop.

After the hackers broke into its GitHub account, the company said the hackers accessed the Amazon Web Services cloud environment of Salesloft’s AI and chatbot-powered marketing platform Drift, which allowed them to steal OAuth tokens for Drift’s customers. OAuth is a standard that allows users to

In stealing these tokens, the threat actors breached several Salesloft’s customers, such as Bugcrowd, Cloudflare, Google, Proofpoint, Palo Alto Networks, and Tenable, among others, many of which are likely still unknown.

Google’s Threat Intelligence Group revealed the supply chain breach late in August, attributing it to a hacking group it calls UNC6395.

Techcrunch event Join 10k+ tech and VC leaders for growth and connections at Disrupt 2025 Netflix, Box, a16z, ElevenLabs, Wayve, Sequoia Capital, Elad Gil — just some of the 250+ heavy hitters leading 200+ sessions designed to deliver the insights that fuel startup growth and sharpen your edge. Don’t miss the 20th anniversary of TechCrunch, and a chance to learn from the top voices in tech. Grab your ticket before Sept 26 to save up to $668. Join 10k+ tech and VC leaders for growth and connections at Disrupt 2025 Netflix, Box, a16z, ElevenLabs, Wayve, Sequoia Capital, Elad Gil — just some of the 250+ heavy hitters leading 200+ sessions designed to deliver the insights that fuel startup growth and sharpen your edge. Don’t miss the 20th anniversary of TechCrunch, and a chance to learn from the top voices in tech. Grab your ticket before Sept 26 to save up to $668. San Francisco | October 27-29, 2025 REGISTER NOW Cybersecurity publications DataBreaches.net and Bleeping Computer previously reported that the hackers behind the breach are the prolific hacking group known as ShinyHunters. The hackers are believed to be trying to extort victims

Salesloft said on Sunday that its integration with Salesforce is now restored.

Topics

Lorenzo Franceschi-Bicchierai Senior

Lorenzo Franceschi-Bicchierai is a Senior

You can contact or verify outreach from Lorenzo

October 27-29, 2025 San Francisco Founders: land your investor and sharpen your pitch. Investors: discover your next breakout startup. Innovators: claim a front-row seat to the future. Join 10,000+ tech leaders at the epicenter of innovation. Register now and save up to $668.Regular Bird rates end September 26

Most Popular Musk’s $1T pay package is full of watered-down versions of his own broken promises Sean O'Kane

Scale AI’s former CTO launches AI agent that could solve big data’s biggest problem Julie Bort

OpenAI announces AI-powered hiring platform to take on LinkedIn Maxwell Zeff

Google brings Material 3 Expressive to Pixel 6 and newer devices, along with other features Aisha Malik

Tesla’s 4th ‘Master Plan’ reads like LLM-generated nonsense Sean O'Kane

BMW, I am so breaking up with you Connie Loizos

US and Indian VCs just formed a $1B+ alliance to fund India’s deep tech startups Jagmeet Singh

X LinkedIn Facebook Instagram youTube Mastodon Threads Bluesky TechCrunchStaffContact UsAdvertiseCrunchboard JobsSite Map Terms of ServicePrivacy PolicyRSS Terms of UseCode of Conduct TelsaAnthropicTelexKlarnaMrBeastTech LayoffsChatGPT © 2025 TechCrunch Media LLC.