Last week, Salesloft announced its Drift application was breached, which provided unauthorized access to its customer's Salesforce data. This supply chain attack impacted hundreds of organizations, including Palo Alto Networks.
As soon as we learned of the event, we disconnected the vendor from our Salesforce environment and our Unit 42 security teams launched a comprehensive investigation. Our investigation confirms the incident was isolated to our CRM platform; no Palo Alto Networks products or services were impacted, and they remain secure and fully operational. The data involved includes mostly business contact information, internal sales account and basic case data related to our customers.
We take this incident seriously and are reaching out to a limited number of customers that have potentially more sensitive data exposed.
If you have concerns or need additional support, our teams are available via Palo Alto Networks customer support channels.
For additional technical details, guidance for breach victims, and recommended mitigations, please refer to our Unit 42 Threat Brief.