Abstract The August 2025 Salesloft Drift breach demonstrates a systemic security blind spot across all industries: third-party delegated access through OAuth integrations. Over 700 organizations — including financial institutions, technology companies, healthcare providers, and government agencies — experienced data exposure, not through their own systems being compromised, but through the theft and misuse of OAuth tokens granted to a trusted third-party application. From a financial se...
