{"id":123325,"date":"2025-08-27T05:53:18","date_gmt":"2025-08-27T05:53:18","guid":{"rendered":"https:\/\/cybersecuritynews.com\/?p=123325"},"modified":"2025-08-27T05:53:20","modified_gmt":"2025-08-27T05:53:20","slug":"salesloft-drift-hacked","status":"publish","type":"post","link":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/","title":{"rendered":"Salesloft Drift Hacked to Steal OAuth Tokens and Exfiltrate from Salesforce Corporate Instances"},"content":{"rendered":"\n

A sophisticated data exfiltration campaign targeting corporate Salesforce instances has exposed sensitive information from multiple organizations through compromised OAuth tokens<\/a> associated with the Salesloft Drift third-party application. <\/p>\n\n\n\n

The threat actor, designated as UNC6395, systematically harvested credentials and sensitive data between August 8-18, 2025, demonstrating advanced operational security awareness while executing SOQL queries across numerous Salesforce objects.<\/p>\n\n\n\n

Key Takeaways<\/strong>
<\/mark>1. UNC6395 used compromised Salesloft Drift OAuth tokens to access Salesforce instances .
2. Harvested AWS keys, Snowflake tokens, and passwords from Salesforce data.
3. All Drift tokens revoked; organizations must rotate credentials.<\/pre>\n\n\n\n
The campaign represents a significant supply chain attack vector, exploiting the trust relationship between Salesforce instances and integrated third-party applications. <\/p>\n\n\n\n
UNC6395 leveraged legitimate OAuth authentication mechanisms to gain unauthorized access, bypassing traditional security controls and making detection particularly challenging for affected organizations.<\/p>\n\n\n\n
OAuth Token Exploitation <\/strong><\/h2>\n\n\n\n
Google Threat Intelligence Group\u00a0reported<\/a> that the threat actor utilized compromised OAuth access tokens and refresh tokens from the Salesloft Drift application to authenticate against target Salesforce instances.\u00a0<\/p>\n\n\n\n
This attack vector exploited the OAuth 2.0 authorization framework<\/a>, which allows third-party applications to access Salesforce data without exposing user credentials directly.<\/p>\n\n\n\n
UNC6395 executed systematic SOQL (Salesforce Object Query Language) queries to enumerate and extract data from critical Salesforce objects including Cases, Accounts, Users, and Opportunities. <\/p>\n\n\n\n
The actor demonstrated technical sophistication by running COUNT queries to assess data volumes before exfiltration:<\/p>\n\n\n
\n
\"Hackers<\/figure><\/div>\n\n\n
Salesloft stated<\/a> that the attacker specifically targeted AWS access keys (AKIA identifiers), passwords, Snowflake credentials, and other sensitive authentication materials stored within Salesforce custom fields and standard objects.\u00a0<\/p>\n\n\n\n
Post-exfiltration analysis revealed the actor searched extracted data for patterns matching credential formats, indicating a primary objective of credential harvesting rather than traditional data theft.<\/p>\n\n\n\n
Mitigatons<\/strong><\/h2>\n\n\n\n
Salesforce and Salesloft responded by revoking all active OAuth tokens associated with the Drift application on August 20, 2025, effectively terminating the attack vector. <\/p>\n\n\n\n
The Drift application was subsequently removed from the Salesforce <\/a>AppExchange pending a comprehensive security review.<\/p>\n\n\n\n
Organizations using the Salesloft Drift integration should immediately implement several remediation measures. <\/p>\n\n\n\n
Event Monitoring logs should be reviewed for suspicious UniqueQuery events and authentication anomalies associated with the Drift connected app. <\/p>\n\n\n\n
Security teams must scan Salesforce<\/a> objects for exposed secrets using tools like TruffleHog and search for patterns including “AKIA”, “snowflakecomputing[.]com”, and generic credential references.<\/p>\n\n\n\n
Connected app permissions require immediate hardening through scope restriction, IP address restrictions, and implementation of the principle of least privilege. <\/p>\n\n\n\n
The “API Enabled” permission should be removed from user profiles and granted selectively through Permission Sets to authorized personnel only. <\/p>\n\n\n\n
Session timeout configurations in Session Settings should be optimized to limit exposure windows for compromised credentials.<\/p>\n\n\n\n
This incident highlights the crucial importance of securing third-party integration and the necessity for continuous monitoring of OAuth-enabled applications with access to sensitive corporate data repositories.<\/p>\n\n\n\n
Find this Story Interesting! Follow us on LinkedIn<\/a> and X<\/a> to Get More Instant Updates<\/strong>.<\/p>\n","protected":false},"excerpt":{"rendered":"
A sophisticated data exfiltration campaign targeting corporate Salesforce instances has exposed sensitive information from multiple organizations through compromised OAuth tokens associated with the Salesloft Drift third-party application.  The threat actor, designated as UNC6395, systematically harvested credentials and sensitive data between August 8-18, 2025, demonstrating advanced operational security awareness while executing SOQL queries across numerous Salesforce […]<\/p>\n","protected":false},"author":52,"featured_media":123328,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgxNgpRsL544R-b_yRgf02ziOvL00v0IOdT1rxQbMFV9-0QXdr1UXnAXcKueW1P_LdUGM_VoQxF1qOEUm_uU4r9bRYC5rqPVeZrzzDxIjQaBpQE4Cf3wYUqmh8NzDB2mS9UNiVwY6CfQ-kO15Vnbw40ZG9Ddr1cjroiS31qTLqkJdssAk7HEm9J6uJGPR8\/s16000\/Hackers%20Exfiltrated%20Data%20from%20Salesforce%20Instances.webp","fifu_image_alt":"Hackers Exfiltrated Data from Salesforce Instances","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[2821,11,2737],"tags":[149,151,157],"class_list":{"0":"post-123325","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-attack-news","8":"category-cyber-security-news","9":"category-vulnerability-news","10":"tag-cyber-security","11":"tag-cyber-security-news","12":"tag-data-breach"},"yoast_head":"\nSalesloft Drift Hacked to Steal OAuth Tokens and Exfiltrate from Salesforce Corporate Instances<\/title>\n<meta name=\"description\" content=\"A sophisticated data exfiltration campaign targeting corporate Salesforce instances has exposed sensitive information from multiple organizations through compromised OAuth tokens associated with the Salesloft Drift third-party application.\u00a0\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Salesloft Drift Hacked to Steal OAuth Tokens and Exfiltrate from Salesforce Corporate Instances\" \/>\n<meta property=\"og:description\" content=\"A sophisticated data exfiltration campaign targeting corporate Salesforce instances has exposed sensitive information from multiple organizations through compromised OAuth tokens associated with the Salesloft Drift third-party application.\u00a0\" \/>\n<meta property=\"og:url\" content=\"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/\" \/>\n<meta property=\"og:site_name\" content=\"Cyber Security News\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Hackingtutorialsandnews\" \/>\n<meta property=\"article:published_time\" content=\"2025-08-27T05:53:18+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-08-27T05:53:20+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgxNgpRsL544R-b_yRgf02ziOvL00v0IOdT1rxQbMFV9-0QXdr1UXnAXcKueW1P_LdUGM_VoQxF1qOEUm_uU4r9bRYC5rqPVeZrzzDxIjQaBpQE4Cf3wYUqmh8NzDB2mS9UNiVwY6CfQ-kO15Vnbw40ZG9Ddr1cjroiS31qTLqkJdssAk7HEm9J6uJGPR8\/s16000\/Hackers%20Exfiltrated%20Data%20from%20Salesforce%20Instances.webp\" \/><meta property=\"og:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgxNgpRsL544R-b_yRgf02ziOvL00v0IOdT1rxQbMFV9-0QXdr1UXnAXcKueW1P_LdUGM_VoQxF1qOEUm_uU4r9bRYC5rqPVeZrzzDxIjQaBpQE4Cf3wYUqmh8NzDB2mS9UNiVwY6CfQ-kO15Vnbw40ZG9Ddr1cjroiS31qTLqkJdssAk7HEm9J6uJGPR8\/s16000\/Hackers%20Exfiltrated%20Data%20from%20Salesforce%20Instances.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Florence Nightingale\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgxNgpRsL544R-b_yRgf02ziOvL00v0IOdT1rxQbMFV9-0QXdr1UXnAXcKueW1P_LdUGM_VoQxF1qOEUm_uU4r9bRYC5rqPVeZrzzDxIjQaBpQE4Cf3wYUqmh8NzDB2mS9UNiVwY6CfQ-kO15Vnbw40ZG9Ddr1cjroiS31qTLqkJdssAk7HEm9J6uJGPR8\/s16000\/Hackers%20Exfiltrated%20Data%20from%20Salesforce%20Instances.webp\" \/>\n<meta name=\"twitter:creator\" content=\"@The_Cyber_News\" \/>\n<meta name=\"twitter:site\" content=\"@The_Cyber_News\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Florence Nightingale\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Salesloft Drift Hacked to Steal OAuth Tokens and Exfiltrate from Salesforce Corporate Instances","description":"A sophisticated data exfiltration campaign targeting corporate Salesforce instances has exposed sensitive information from multiple organizations through compromised OAuth tokens associated with the Salesloft Drift third-party application.\u00a0","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/","og_locale":"en_US","og_type":"article","og_title":"Salesloft Drift Hacked to Steal OAuth Tokens and Exfiltrate from Salesforce Corporate Instances","og_description":"A sophisticated data exfiltration campaign targeting corporate Salesforce instances has exposed sensitive information from multiple organizations through compromised OAuth tokens associated with the Salesloft Drift third-party application.\u00a0","og_url":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/","og_site_name":"Cyber Security News","article_publisher":"https:\/\/www.facebook.com\/Hackingtutorialsandnews","article_published_time":"2025-08-27T05:53:18+00:00","article_modified_time":"2025-08-27T05:53:20+00:00","og_image":[{"url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgxNgpRsL544R-b_yRgf02ziOvL00v0IOdT1rxQbMFV9-0QXdr1UXnAXcKueW1P_LdUGM_VoQxF1qOEUm_uU4r9bRYC5rqPVeZrzzDxIjQaBpQE4Cf3wYUqmh8NzDB2mS9UNiVwY6CfQ-kO15Vnbw40ZG9Ddr1cjroiS31qTLqkJdssAk7HEm9J6uJGPR8\/s16000\/Hackers%20Exfiltrated%20Data%20from%20Salesforce%20Instances.webp","type":"","width":"","height":""},{"width":1600,"height":900,"url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgxNgpRsL544R-b_yRgf02ziOvL00v0IOdT1rxQbMFV9-0QXdr1UXnAXcKueW1P_LdUGM_VoQxF1qOEUm_uU4r9bRYC5rqPVeZrzzDxIjQaBpQE4Cf3wYUqmh8NzDB2mS9UNiVwY6CfQ-kO15Vnbw40ZG9Ddr1cjroiS31qTLqkJdssAk7HEm9J6uJGPR8\/s16000\/Hackers%20Exfiltrated%20Data%20from%20Salesforce%20Instances.webp","type":"image\/jpeg"}],"author":"Florence Nightingale","twitter_card":"summary_large_image","twitter_image":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgxNgpRsL544R-b_yRgf02ziOvL00v0IOdT1rxQbMFV9-0QXdr1UXnAXcKueW1P_LdUGM_VoQxF1qOEUm_uU4r9bRYC5rqPVeZrzzDxIjQaBpQE4Cf3wYUqmh8NzDB2mS9UNiVwY6CfQ-kO15Vnbw40ZG9Ddr1cjroiS31qTLqkJdssAk7HEm9J6uJGPR8\/s16000\/Hackers%20Exfiltrated%20Data%20from%20Salesforce%20Instances.webp","twitter_creator":"@The_Cyber_News","twitter_site":"@The_Cyber_News","twitter_misc":{"Written by":"Florence Nightingale","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"NewsArticle","@id":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/#article","isPartOf":{"@id":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/"},"author":{"name":"Florence Nightingale","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/9499ec2c658bd17d567c80151dca2a25"},"headline":"Salesloft Drift Hacked to Steal OAuth Tokens and Exfiltrate from Salesforce Corporate Instances","datePublished":"2025-08-27T05:53:18+00:00","dateModified":"2025-08-27T05:53:20+00:00","mainEntityOfPage":{"@id":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/"},"wordCount":458,"publisher":{"@id":"https:\/\/cybersecuritynews.com\/#organization"},"image":{"@id":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/#primaryimage"},"thumbnailUrl":"https:\/\/i2.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgxNgpRsL544R-b_yRgf02ziOvL00v0IOdT1rxQbMFV9-0QXdr1UXnAXcKueW1P_LdUGM_VoQxF1qOEUm_uU4r9bRYC5rqPVeZrzzDxIjQaBpQE4Cf3wYUqmh8NzDB2mS9UNiVwY6CfQ-kO15Vnbw40ZG9Ddr1cjroiS31qTLqkJdssAk7HEm9J6uJGPR8\/s16000\/Hackers%20Exfiltrated%20Data%20from%20Salesforce%20Instances.webp?w=1600&resize=1600,900&ssl=1","keywords":["cyber security","cyber security news","data breach"],"articleSection":["Cyber Attack News","Cyber Security News","Vulnerability News"],"inLanguage":"en-US","copyrightYear":"2025","copyrightHolder":{"@id":"https:\/\/cybersecuritynews.com\/#organization"}},{"@type":"WebPage","@id":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/","url":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/","name":"Salesloft Drift Hacked to Steal OAuth Tokens and Exfiltrate from Salesforce Corporate Instances","isPartOf":{"@id":"https:\/\/cybersecuritynews.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/#primaryimage"},"image":{"@id":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/#primaryimage"},"thumbnailUrl":"https:\/\/i2.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgxNgpRsL544R-b_yRgf02ziOvL00v0IOdT1rxQbMFV9-0QXdr1UXnAXcKueW1P_LdUGM_VoQxF1qOEUm_uU4r9bRYC5rqPVeZrzzDxIjQaBpQE4Cf3wYUqmh8NzDB2mS9UNiVwY6CfQ-kO15Vnbw40ZG9Ddr1cjroiS31qTLqkJdssAk7HEm9J6uJGPR8\/s16000\/Hackers%20Exfiltrated%20Data%20from%20Salesforce%20Instances.webp?w=1600&resize=1600,900&ssl=1","datePublished":"2025-08-27T05:53:18+00:00","dateModified":"2025-08-27T05:53:20+00:00","description":"A sophisticated data exfiltration campaign targeting corporate Salesforce instances has exposed sensitive information from multiple organizations through compromised OAuth tokens associated with the Salesloft Drift third-party application.\u00a0","breadcrumb":{"@id":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/#primaryimage","url":"https:\/\/i2.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgxNgpRsL544R-b_yRgf02ziOvL00v0IOdT1rxQbMFV9-0QXdr1UXnAXcKueW1P_LdUGM_VoQxF1qOEUm_uU4r9bRYC5rqPVeZrzzDxIjQaBpQE4Cf3wYUqmh8NzDB2mS9UNiVwY6CfQ-kO15Vnbw40ZG9Ddr1cjroiS31qTLqkJdssAk7HEm9J6uJGPR8\/s16000\/Hackers%20Exfiltrated%20Data%20from%20Salesforce%20Instances.webp?w=1600&resize=1600,900&ssl=1","contentUrl":"https:\/\/i2.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgxNgpRsL544R-b_yRgf02ziOvL00v0IOdT1rxQbMFV9-0QXdr1UXnAXcKueW1P_LdUGM_VoQxF1qOEUm_uU4r9bRYC5rqPVeZrzzDxIjQaBpQE4Cf3wYUqmh8NzDB2mS9UNiVwY6CfQ-kO15Vnbw40ZG9Ddr1cjroiS31qTLqkJdssAk7HEm9J6uJGPR8\/s16000\/Hackers%20Exfiltrated%20Data%20from%20Salesforce%20Instances.webp?w=1600&resize=1600,900&ssl=1","width":"1600","height":"900","caption":"Hackers Exfiltrated Data from Salesforce Instances"},{"@type":"BreadcrumbList","@id":"https:\/\/cybersecuritynews.com\/salesloft-drift-hacked\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/cybersecuritynews.com\/"},{"@type":"ListItem","position":2,"name":"Salesloft Drift Hacked to Steal OAuth Tokens and Exfiltrate from Salesforce Corporate Instances"}]},{"@type":"WebSite","@id":"https:\/\/cybersecuritynews.com\/#website","url":"https:\/\/cybersecuritynews.com\/","name":"Cyber Security News","description":"World's #1 Premier Cybersecurity and Hacking News Portal","publisher":{"@id":"https:\/\/cybersecuritynews.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/cybersecuritynews.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/cybersecuritynews.com\/#organization","name":"Cyber Security News","url":"https:\/\/cybersecuritynews.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/logo\/image\/","url":"https:\/\/cybersecuritynews.com\/wp-content\/uploads\/2021\/06\/Cyber-security.jpg","contentUrl":"https:\/\/cybersecuritynews.com\/wp-content\/uploads\/2021\/06\/Cyber-security.jpg","width":200,"height":200,"caption":"Cyber Security News"},"image":{"@id":"https:\/\/cybersecuritynews.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Hackingtutorialsandnews","https:\/\/x.com\/The_Cyber_News","https:\/\/www.linkedin.com\/company\/cybersecurity-news\/"]},{"@type":"Person","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/9499ec2c658bd17d567c80151dca2a25","name":"Florence Nightingale","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/faec4661c45b9ddb8bbe24d5f673c04c97f069fd3caa1583f3c201acc61f34c2?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/faec4661c45b9ddb8bbe24d5f673c04c97f069fd3caa1583f3c201acc61f34c2?s=96&d=mm&r=g","caption":"Florence Nightingale"},"description":"Florence Nightingale is a senior security and privacy reporter, covering data breaches, cybercrime, malware, and data leaks from cyber space daily.","url":"https:\/\/cybersecuritynews.com\/author\/florence\/"}]}},"jetpack_featured_media_url":"https:\/\/i2.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEgxNgpRsL544R-b_yRgf02ziOvL00v0IOdT1rxQbMFV9-0QXdr1UXnAXcKueW1P_LdUGM_VoQxF1qOEUm_uU4r9bRYC5rqPVeZrzzDxIjQaBpQE4Cf3wYUqmh8NzDB2mS9UNiVwY6CfQ-kO15Vnbw40ZG9Ddr1cjroiS31qTLqkJdssAk7HEm9J6uJGPR8\/s16000\/Hackers%20Exfiltrated%20Data%20from%20Salesforce%20Instances.webp?w=1600&resize=1600,900&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/123325","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/users\/52"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/comments?post=123325"}],"version-history":[{"count":6,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/123325\/revisions"}],"predecessor-version":[{"id":123336,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/123325\/revisions\/123336"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/media\/123328"}],"wp:attachment":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/media?parent=123325"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/categories?post=123325"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/tags?post=123325"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}