AI Domino Effect: How One App Breach Toppled Giants - TrendMicro

Threat actors (UNC6395) initiated a supply chain attack by compromising a Salesloft GitHub repository to exfiltrate a sensitive OAuth token. This token granted privileged access to Salesloft's Drift account, subsequently allowing the attackers to exfiltrate customer conversation data, contact information, and OpenAI API credentials from over 700 connected Salesforce instances.