Dynatrace Data Breach Exposes Customer Information Stored in Salesforce

Dynatrace has confirmed that customer data stored in Salesforce was exposed following a third-party breach involving Salesloft’s Drift application.

The incident, which occurred in August 2025, allowed unauthorized access to Salesforce CRM data across multiple companies.

Both Salesloft and Salesforce responded by disabling the compromised integrations and notifying affected customers.

Incident Overview

The breach stemmed from a cyberattack targeting Drift, a communication and sales engagement application provided by Salesloft.

Attackers were able to exploit connections between Drift and Salesforce, giving them partial access to CRM data.

While the scope of the incident varied by organization, Dynatrace confirmed that some of its customer-related data was involved.

According to the company, the incident was limited strictly to Salesforce systems used for business operations.

No Dynatrace products, services, or systems containing sensitive customer usage data were impacted. Operations across Dynatrace’s platform—including monitoring and observability services—remained uninterrupted throughout the investigation ...