Source link : https://tech365.info/how-attackers-hit-700-organizations-by-means-of-cx-platforms-your-soc-already-accepted/
CX platforms course of billions of unstructured interactions a 12 months: Survey types, assessment websites, social feeds, name heart transcripts, all flowing into AI engines that set off automated workflows touching payroll, CRM, and cost programs. No software in a safety operation heart chief’s stack inspects what a CX platform’s AI engine is ingesting, and attackers figured this out. They poison the information feeding it, and the AI does the injury for them.
The Salesloft/Drift breach in August 2025 proved precisely this. Attackers compromised Salesloft’s GitHub surroundings, stole Drift chatbot OAuth tokens, and accessed Salesforce environments throughout 700+ organizations, together with Cloudflare, Palo Alto Networks, and Zscaler. It then scanned stolen information for AWS keys, Snowflake tokens, and plaintext passwords. And no malware was deployed.
That hole is wider than most safety leaders notice: 98% of organizations have an information loss prevention (DLP) program, however solely 6% have devoted assets, in keeping with Proofpoint’s 2025 Voice of the CISO report, which surveyed 1,600 CISOs throughout 16 international locations. And 81% of interactive intrusions now use official entry relatively than malware, per CrowdStrike’s 2025 Menace Searching Report. Cloud intrusions surged 136% within the first half of 2025.
“Most security teams still classify experience management platforms as ‘survey tools,’ which sit in the same risk tier as a project…
—-
Author : tech365
Publish date : 2026-02-19 21:21:00
Copyright for syndicated content belongs to the linked Source.
—-
1 – 2 – 3 – 4 – 5 – 6 – 7 – 8