September 18, 2025 | 1 min read Salesforce-Connected Third-Party Drift Application Incident Response By: Daniel Swann Back to blog On the Fiix team we take transparency seriously, especially when it comes to protecting our customers’ data. We recently learned of a widespread data theft campaign involving the integration of Salesforce and Salesloft Drift that has impacted hundreds of organizations around the world. Fiix was among the many impacted. Our ongoing investigation found evidence that an unauthorized user accessed data in Fiix’s Salesforce instance. This included access to business contact details such as names, business email addresses, and phone numbers. The Fiix CMMS application for maintenance management was not affected. Fiix has robust controls in place and has taken immediate action, including: Revoking and rotating all potentially compromised Salesforce, Drift, and associated credentials. Following up on known indicators of compromise shared by Salesforce and leading cybersecurity experts. Prioritized continuous monitoring of our Salesforce solutions using our established cybersecurity practices. For the latest updates from Salesforce, please see published updates from Salesforce: Security Advisory: Unusual Activity in a Third Party Connected App (opens in new tab). Our team remains vigilant in its safeguarding of Fiix systems and our customers’ data, and we will continue to communicate as appropriate. (opens in new tab) (opens in new tab)