- Cloudflare confirms to lose sensitive customer data from its account
- The attackers moved in after compromising Salesloft’s operating platform
- CloudFlares infrastructure remains intact
Cloudflare has become the latest tech giant added to the growing list of companies that are compromised through Salesloft Operation Overlay.
The Content Supply Network Company has confirmed the violation and said the rotated potentially vulnerable secrets and notified customers whose data may have been compromised as a response.
104 tokens
In the case of CloudFlore, most of the information stored in the affected account, customer contact information and “Basic Support Case Data,” are still warning of hackers that potentially use this information in attacks.
“Some customer support interactions may reveal information about a customer’s configuration and may contain sensitive information such as Access,” a statement states.
“Given that Salesforce Support Case data contains the contents of support tickets with cloudflare, any information that a customer may have shared with cloudflare in our support system – including logs, symbols or passwords – must be considered compromised, and we encourage you to rotate vigorously to rotate any legitimate information that you may have shared with us through this channel.”
When Cloudflare analyzed the incident on its part, the 104 Cloudflare API Tooks found. Although it seems that no one managed to abuse them in the meantime, the company still rotated them to be on the safe side.
“No cloudflare services or infrastructure were compromised as a result of this violation,” it confirmed.
Via Bleeping computer
