Update: Salesloft’s Drift Integration Security Incident Impacting Some PagerDuty Salesforce Data

PagerDuty was notified in August 2025 by Salesloft about a security breach involving Salesloft’s Drift application, which compromised the OAuth integration flow with Salesforce, leading to unauthorized access to some of PagerDuty's Salesforce data used for customer support and case management. The exposed data primarily consisted of customer contact information, including names, phone numbers, email addresses, and, in some cases, sensitive information like API access tokens. While there is no evidence of unauthorized access to the PagerDuty platform itself, the company has taken proactive measures by revoking affected API keys, contacting impacted customers, and recommending all customers rotate their credentials as a precaution. Additionally, PagerDuty has disabled integrations with Drift, continues to investigate the incident with third-party security partners, and emphasizes vigilance against phishing and social engineering attacks. The company acknowledges its responsibility for third-party tools it utilizes and assures customers that official communications will only come through trusted channels.