Supply chain [SC] Supply Chain

Sprout Social, Inc. Third-Party Breach (September 2025)

2025-09-01 [vendor] Drift (Salesloft)
Primary Source ↗

Incident Details

In 2025, Sprout Social, Inc. experienced a data security incident via a third-party vendor relationship. The compromised third-party vendor was Drift (Salesloft). Source reporting: https://support.sproutsocial.com/hc/en-us/articles/39509392885773-Salesloft-Drift-Security-Incident-September-12-2025

Technical Details

Initial Attack Vector
Compromise of third-party service provider / vendor relationship
Vendor / Product
Drift (Salesloft)
Supply Chain Attack
✅ Confirmed third-party / vendor compromise

Timeline

  1. 2025-09-01 Breach occurred
  2. 2025-09-01 Publicly disclosed