Salesloft says Drift customer data thefts linked to March GitHub account hack | TechCrunch

News Source : TechCrunch
News Summary
- Salesloft said a breach of its GitHub account in March allowed hackers to steal authentication tokens that were later used in a mass-hack.
- The timeline raises fresh questions about the company's security posture, including why it took Salesloft some six months to detect the intrusion.
- Google’s Threat Intelligence Group revealed the supply chain breach late in August, attributing it to a hacking group it calls UNC6395.
- The hackers are believed to be trying to extort victims by contacting them privately.
Salesloft said a breach of its GitHub account in March allowed hackers to steal authentication tokens that were later used in a masshack targeting several of its big tech customers.Citing an inve [+2317 chars]