Tenable Response to Salesforce and Salesloft Drift Incident

At Tenable, we take transparency seriously, especially when it comes to protecting our customers’ data. We recently learned of a widespread data theft campaign involving the integration of Salesforce and Salesloft Drift, and Tenable was among the many organizations impacted. In line with our commitment to transparency and data protection, we made impacted customers aware of the details as quickly as possible. Importantly, we assured them that Tenable products and any data within the Tenable product suite were not impacted. 

Our ongoing investigation found evidence that an unauthorized user had access to a portion of some of our customers’ information stored in our Salesforce instance, including subject lines and initial descriptions provided by our customers when opening a Tenable support case, and commonly available business contact information (such as names, business email addresses, phone numbers, and regional/location references). At this time we have no evidence that any of this information has been misused. 

Tenable has robust controls in place and have taken immediate action to address this issue, including:

• Revoked and Rotated Credentials: Revoked and rotated all potentially compromised Salesforce, Drift and associated integrations (or systems) credentials.
• Secured Our Systems: Further hardened our Salesforce environment and other connected systems to reduce the likelihood of a future exploitation.
• Disabled and Removed the Application: Disabled and removed the Salesloft Drift application from our Salesforce instance and all applications that integrated with Salesloft.
• Actioned Indicators of Compromise: Applied known available indicators of compromise shared by Salesforce and leading cybersecurity experts.
• Maintained Continuous Monitoring: Ongoing monitoring of our Salesforce and other SaaS solutions utilizing our established SSPM technology for exposures and unusual activity.

The security and privacy of our customers’ data are critical to us, and we strongly recommend that our customers take the proactive steps recommended by Salesforce and leading cybersecurity experts, which can be viewed here.

At Tenable, we are committed to a transparent and thorough response to any security issue. Our team is working around the clock to safeguard our systems and our customers’ data, and will update as appropriate.

Need Assistance?

If you have concerns or need additional support, Tenable’s Support teams are available at [email protected].