The breach, now known to have begun in March, raises questions about why it took six months for Salesloft to detect the ...

The malicious JavaScript code ("bundle.js") injected into each of the trojanized package is designed to download and run ...

A new supply chain attack on GitHub, dubbed 'GhostAction,' has compromised 3,325 secrets, including PyPI, npm, DockerHub, GitHub tokens, Cloudflare, and AWS keys.

August 2025 campaigns deliver kkRAT and Gh0st RAT variants via SEO poisoning, disabling antivirus to hijack crypto wallets.

Security investigators from Google said UNC6395 hackers spent several months running through Salesloft and Drift systems before launching a data breach campaign that some security researchers say has ...

The FBI has issued a FLASH alert warning that two threat clusters, tracked as UNC6040 and UNC6395, are compromising ...

A threat actor targeted low-skilled hackers, known as ‘script kiddies’ with a fake malware builder that secretly infected them with a backdoor to st ...

Thousands of secrets such as PyPI and AWS keys, GitHub tokens, and more, were stolen recently during a supply-chain attack ...

Salesloft and Mandiant continue to investigate the hack that compromised some of the globe’s biggest cyber security firms, as ...

Chinese users looking to download popular browsers and communications software are being targeted by different malware ...

Threat actors had access to Salesloft’s GitHub account between March and June 2025 and performed reconnaissance.