Cloudflare(US:NET) PYMNTS.comยท2025-09-03 00:00Core Insights - Cloudflare announced that information in its customer support system should be considered compromised due to a breach involving Salesloft's Drift application [2][4] - The breach allowed unauthorized access to Cloudflare's Salesforce instance used for customer support and case management [2][5] - Cloudflare identified and rotated 104 compromised API tokens and notified affected customers, emphasizing that its own services and infrastructure were not compromised [5][6] Data Compromise Details - The compromised data primarily includes customer contact information and basic support case data, with some interactions potentially revealing sensitive information such as access tokens [3][4] - Cloudflare urged customers to rotate any credentials shared through its support system due to the breach [4] Vendor Security Issues - Salesloft detected a security issue in its Drift application, which led to the breach, and subsequently revoked connections between Drift and Salesforce [5][6] - The breach occurred between August 8 and August 18, with Salesloft notifying all impacted customers [6] - The incident highlights the risks associated with relying on third-party vendors, which can increase a company's cybersecurity vulnerabilities [7]