🗞️ UNC6395 Targets Salesforce via Salesloft Drift: What happened, why it happened, and what you can learn from it

AskOmni

GenAI SaaS Security Companion

CHALLENGE

SaaS sprawl brings a surge of apps, users, and integrations, many lacking proper oversight. This surge leads to alert fatigue, misconfigurations, and hidden risks. Without the use of AI, the volume and complexity of data overwhelms any team.

AskOmni transforms SaaS security with GenAI. It makes security observations clear, contextual, and actionable. Just ask in your preferred language, and get logical steps to improve posture, investigate threats, and remediate risks before they escalate.

How AskOmni leverages advanced analytics and Generative AI

Understanding and managing security risks can be overwhelming. AskOmni simplifies this by offering:

Personalized assistance: Get tailored expert guidance on how to use the AppOmni platform effectively, even if you’re not a SaaS security expert.
Contextual observations: Understand the relevance of security observations and how they relate to your overall SaaS security posture.
Actionable recommendations: Receive clear instructions on how to address security issues, from threat hunting to deep analysis.

AskOmni isn’t just a tool; it’s your companion in navigating SaaS security, providing expert observations with the depth and clarity you need.

GenAI Intelligence for SaaS Security: AskOmni Explained in 2 Minutes

Managing SaaS security is complex—but it doesn’t have to be. AskOmni transforms security questions into actionable recommendations, helping teams respond faster and smarter.

Just ask, get answers.

Watch the Demo

In the News

Extensive Salesforce data theft campaign fueled by stolen Salesloft Drift OAuth tokens

Such an attack campaign was noted by AppOmni Chief Security Officer Cory Michal to exhibit elevated levels of discipline from the threat actors.
In the News

Massive attack hits Salesforce users: hackers exfiltrating data with stolen third-party app credentials

Cory Michal, CSO of AppOmni, warns that the incident is yet another example of how integrated apps open doors to attackers, enabling broader access.
In the News

Salesloft OAuth Breach via Drift AI Chat Agent Exposes Salesforce Customer Data

“What’s most noteworthy about the UNC6395 attacks is both the scale and the discipline,” Cory Michal, CSO of AppOmni, said.

Critical applications secured

Protect data essential to your business

Microsoft 365

Salesforce

ServiceNow

Workday

Google Workspace

Explore all applications

“I needed to get a better understanding of the overall attack surface, our portfolio of applications, and their configurations and data exposure risks.”

Wai Sheng Cheng

Information Security and Risk Manager, Spencer Fane

Read the Case Study

Manage M365 Security

An IT manager saved their team
20 hours a week by using AskOmni
to avoid redundant tasks.

Solutions

Product

Featured Resources

What SaaS Apps Are You Really Using? And Why It Matters (More on SaaS Discovery)

Simplify SaaS Security: How Posture Scoring Empowers Teams to Optimize SSPM

Customers

Featured Resources

How the University of Cincinnati gained full visibility & control over SaaS security

How Rightmove secures and optimizes its expanding SaaS estate with AppOmni

Partners

Featured Resources

AppOmni Is Now Available in All Major Cloud Marketplaces

AppOmni Continues to Lead SaaS Security, Ends Fiscal Year with Strong Momentum

SaaS Security Resources

Featured Resources

Operationalize Zero Trust in Public Sector SaaS

Salesforce Industry Clouds: 0-days and Exploitable Misconfigs

AskOmni

How AskOmni leverages advanced analytics and Generative AI

GenAI Intelligence for SaaS Security: AskOmni Explained in 2 Minutes

Extensive Salesforce data theft campaign fueled by stolen Salesloft Drift OAuth tokens

Massive attack hits Salesforce users: hackers exfiltrating data with stolen third-party app credentials

Salesloft OAuth Breach via Drift AI Chat Agent Exposes Salesforce Customer Data

Critical applications secured

“I needed to get a better understanding of the overall attack surface, our portfolio of applications, and their configurations and data exposure risks.”

An IT manager saved their team
20 hours a week by using AskOmni
to avoid redundant tasks.

SaaS Security RoundUp

Company

Resources

Secured Apps

Use Cases

Product

Customers

Partners

SaaS Security Resources

AskOmni

How AskOmni leverages advanced analytics and Generative AI

GenAI Intelligence for SaaS Security: AskOmni Explained in 2 Minutes

Related Content

Critical applications secured

“I needed to get a better understanding of the overall attack surface, our portfolio of applications, and their configurations and data exposure risks.” ​​

An IT manager saved their team 20 hours a week by using AskOmnito avoid redundant tasks.

“I needed to get a better understanding of the overall attack surface, our portfolio of applications, and their configurations and data exposure risks.”

An IT manager saved their team
20 hours a week by using AskOmni
to avoid redundant tasks.