SonicWall has issued a strong advisory urging its customers to reset their credentials after detecting a security incident involving its cloud backup service. The breach exposed firewall configuration backup files linked to MySonicWall accounts, though the company emphasized that less than 5 percent of customers were impacted. Suspicious Activity Detected in Cloud Backups According to […]
Salesloft has confirmed that the recent breach impacting its Drift application was triggered by the compromise of its GitHub account, which opened the door for a wider supply chain attack. Breach Details According to Google-owned Mandiant, which is handling the investigation, the attackers, identified as UNC6395, gained unauthorized access to Salesloft’s GitHub account between March
GitHub Account Breach Triggers Salesloft Drift Incident Impacting 22 Companies Read More »
Salesloft has announced that it will temporarily take Drift offline after a large-scale cyberattack led to the theft of OAuth tokens from hundreds of organizations. The decision, revealed on Tuesday, comes after reports confirmed that attackers had compromised Drift’s systems, affecting many companies that rely on its chatbot and integration services. Why Drift Is Going
Salesloft Takes Drift Offline After OAuth Token Theft Hits Hundreds of Organizations Read More »
The maintainers of the Nx build system have warned users about a supply chain attack that allowed cybercriminals to release malicious versions of the popular npm package along with supporting plugins, designed to steal sensitive information. According to the advisory published on Wednesday, “Malicious versions of the Nx package, and certain auxiliary plugins, were uploaded
A whistleblower report filed today accuses the Department of Government Efficiency (DOGE) within the Social Security Administration (SSA) of secretly replicating the nation’s entire Social Security dataset in an unsecured cloud environment. According to the disclosure, this action placed over 300 million Americans at risk of identity theft, financial fraud, and potential loss of Social
DOGE Accused of Uploading Social Security Data to Unsecured Cloud Read More »
A highly advanced cyber campaign has compromised corporate Salesforce environments by abusing OAuth tokens linked to the Salesloft Drift third-party application. The incident resulted in large-scale exposure of sensitive information across several organizations. The campaign, attributed to UNC6395, was active between August 8 and August 18, 2025, and showed a high level of operational security
Salesloft and Drift Breach Used to Steal OAuth Tokens from Salesforce Read More »
Cybersecurity researchers have uncovered a stealthy method that enables attackers to extract Windows secrets and credentials without triggering alerts from most Endpoint Detection and Response (EDR) solutions. This approach can be used after gaining initial access to a system, allowing attackers to perform lateral movement across networks while staying hidden from standard monitoring tools. How
Hackers Evade EDR to Steal Windows Secrets and Credentials Undetected Read More »
Colt Technology Services, a leading telecommunications provider, has confirmed that a ransomware attack on August 12, 2025, resulted in the theft of sensitive customer data. The company revealed that attackers gained access to confidential files containing customer information. Soon after, the document titles were leaked on dark web forums, forcing Colt to take urgent containment
Colt Admits Customer Data Theft Following Ransomware Attack Read More »
The PostgreSQL Global Development Group has rolled out emergency security updates across all supported versions to fix three newly discovered vulnerabilities that expose organizations to arbitrary code execution risks during database restoration processes. These vulnerabilities affect PostgreSQL versions 13 through 17, with security patches available in the latest releases: 17.6, 16.10, 15.14, 14.19, and 13.22.
Critical PostgreSQL Flaws Enable Code Injection in Restorations Read More »
Workday, a well-known provider of enterprise cloud applications for finance and human resources, has confirmed it was impacted by a sophisticated social engineering campaign that led to a data breach involving a third-party Customer Relationship Management (CRM) system. No Customer Data Compromised The company clarified that its customer data and tenant environments were not affected,
Workday Data Breach: Hackers Exploit Third-Party CRM Read More »