HackerOne Incident Update: Salesforce
ID: e3cf138b-cd44-547c-9df6-b09bed2076a6
STIX ID: report--e3cf138b-cd44-547c-9df6-b09bed2076a6
Feed Name: HackerOne Blog
Threat Score
HackerOne confirmed that a subset of its Salesforce records was accessed through a compromise of the Drift (Salesloft) application on August 13 and 18, 2025. They disabled Salesforce-Drift connectors, rotated API/service credentials, engaged a third-party forensics firm, and reported no evidence of lateral movement or exposure of customer vulnerability data; the incident was later remediated and closed on November 10, 2025.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.