Excerpt from Cybersecurity News Article, Published on September 8, 2025
Tenable has recently confirmed a significant data breach affecting the contact details and support case information of some of its customers. This breach is part of a broader, coordinated data theft campaign targeting an integration between Salesforce and the Salesloft Drift marketing application, which has impacted multiple organizations. Tenable’s investigation revealed that unauthorized access was gained to segments of customer information stored within its Salesforce environment.
The exposed data included commonly accessible business contact information, such as customer names, business email addresses, phone numbers, and regional account references. Additionally, certain subject lines and initial support case descriptions were accessed. Despite this exposure, Tenable reported there is currently no evidence suggesting active misuse of the stolen information.
In response to the breach, Tenable took swift action to safeguard its systems. It revoked and rotated all potentially compromised credentials and disabled the Salesloft Drift application and related integrations within its Salesforce instance. The company also reinforced security measures to harden its Salesforce environment and employed indicators of compromise shared by cybersecurity experts to detect and block malicious activities.
Tenable continues to monitor its Salesforce and connected SaaS systems closely to prevent further incidents. Customers are advised to follow proactive security steps recommended by Salesforce and cybersecurity professionals to enhance their own data protections.
This incident highlights the risks posed by third-party application integrations within major business platforms. Tenable’s transparency and rapid mitigation efforts demonstrate its commitment to protecting customer data in an evolving threat landscape.
To delve deeper into this topic, visit the Cybersecurity News Article.
