From a Cybersecurity article via the Cybernews web site article which reads: "Hackers, who obtained access (OAuth) tokens associated with marketing app Salesloft Drift, systematically exported large volumes of data from numerous corporate Salesforce instances.” Credentials were the main target, as the threat actor, labeled UNC6395 and believed to be from China, was observed searching for secrets that could be used to compromise other victim environments."
My question is were WithSecure Customers who use the CloudProtection for Salesforce protected against this breach via Salesloft Drift and was WithSecure Corporate themselves using the Salesloft Drift app?
Thank you
