Recently, a threat actor exploited the Salesloft Drift integration with Salesforce, resulting in unauthorized access of the Salesforce platform at hundreds of companies worldwide. We can confirm that Fenergo was one of the many companies impacted. Although we acted quickly in response to the incident, the breach allowed unauthorized access to a portion of our corporate Salesforce data. 
‍

To be clear, this incident did not affect any data used by Fenergo customers to conduct their business. It had no impact on our operations or our work for customers - we can confirm that no data in any of our customer platforms, including SaaS and Fen Cloud, was accessed, altered or exfiltrated.  All customer environments remained fully secure throughout and continue to be fully secure. 

‍

At Fenergo, we know that our user community shares our commitment to data security. While the impact on Fenergo was limited, we want to explain what happened and the steps we took to respond to the incident. 

‍

On 21 August 2025, Salesloft ,the supplier of a sales engagement platform used by our sales team, alerted us to suspicious activity linked to its Drift application. Salesloft told us that this activity may have affected our corporate Salesforce tenant. We were told that in response to the activity, Salesforce had disabled all Drift instances globally on 18 August, fully containing the incident. Subsequently, as an added precaution, Fenergo terminated our Drift connection and disabled the Drift application within our environment. 

‍

Our subsequent systems review detected signs that the threat actor had been able to query our Salesforce platform by exploiting the Drift integration. We immediately activated our data incident response procedures and Fenergo’s response team commenced an investigation. 

‍

We determined that the unauthorized queries had accessed a portion of internal customer relationship management (CRM) information. Our investigation further confirmed that the incident was limited to Salesforce and had been fully contained. All Fenergo systems remain secure.  

‍

Should you have any questions about this incident, you can reach out to us at clienttrust@fenergo.com.  

‍

For media queries, please contact: 
‍

Cian Geoghegan, +353 87 145 7446, cgeoghegan@gibneycomm.ie  

Donnchadh O’Neill, +353 87 205 6504, donnchadhoneill@gibneycomm.ie