Dynatrace Confirms Data Breach: Cybercriminals Compromised Customer Data from Salesforce

Dynatrace has confirmed that it was impacted by a third-party data breach originating from the Salesloft Drift application. This incident resulted in unauthorized access to customer business contact information stored in its Salesforce CRM. The company clarified that the breach was limited to its CRM platform and did not affect any core Dynatrace products, services, or sensitive customer environments. The security incident began in August 2025 when threat actors compromised Salesloft’s Drift application, a widely used tool for customer engagement. This compromise enabled attackers to gain access to the Salesforce environments of companies using the app. In response, Salesloft and Salesforce acted swiftly to disable the compromised connections and began notifying affected clients, including Dynatrace.

Upon receiving notification of the breach, Dynatrace’s security team took immediate action by disabling the Drift application within its environment. This step was crucial in severing the connection and preventing further unauthorized access. The company launched a thorough investigation, enlisting third-party cybersecurity experts to assess the full scope of the incident. The investigation confirmed that the malicious activity was confined to its Salesforce CRM instance, which is used for managing customer relationships and marketing activities. Dynatrace assured stakeholders that none of its products or services were compromised, and no sensitive credentials or financial details were accessed. Following the investigation, Dynatrace issued guidance to its customers, urging them to remain vigilant against potential social engineering and phishing campaigns. 

Categories: Data Breach, Third-Party Vulnerability, Customer Security Awareness 

Tags: Dynatrace, Data Breach, Salesloft, Drift Application, Salesforce CRM, Unauthorized Access, Customer Information, Cybersecurity, Investigation, Phishing Campaigns