Breach

BleepingComputer reports that internet chess portal and social networking site Chess.com had data from more than 4,500 of its 100 million users pilfered following a June attack against its third-party file transfer application.

More organizations, including SpyCloud, Tanium, PagerDuty, and Proofpoint, have confirmed being impacted by the Salesloft Drift supply chain attack campaign involving stolen OAuth tokens, which was previously reported to have affected Cloudflare, Palo Alto Networks, Google Workspace, and Zscaler, prompting Salesloft to announce the impending temporary shutdown of the Drift platform, The Hacker News reports.

Major cloud-based software-as-a-service provider Workiva which counts Google, T-Mobile, Slack, Paramount, and Delta Airlines as some of its customers had certain data pilfered following the compromise of a third-party customer relationship management system, according to BleepingComputer.

Attackers gained access to customer contact and support case information in Salesforce.

Two zero-day bugs were chained in suspected spyware attacks, according to Amnesty International.

Company claims that while no customer data was stolen, its retail and production operations were disrupted.

AT&T was alleged to have had its infrastructure compromised in yet another breach that has purportedly led to the theft of a database with information from nearly 24 million subscribers, Cybernews reports.