A recent sophisticated supply chain attack targeting Salesforce involved exploitation of third-party integrations, notably through Salesloft’s Drift AI chatbot. Hackers reportedly accessed sensitive data, including AWS keys and user passwords, by employing vishing techniques, according to a warning from the FBI. Over 1.5 billion records from 760 companies have been compromised. Despite the ransom demands and threats to escalate litigation against Salesforce, the company asserts there is “no evidence” its core systems were breached.