AI Security: When Authorization Outlives Intent
Okta, Tuesday, November 4th, 2025
This is the second blog in a seven-part series on identity security as AI security.
TL;DR: A silent breach rippled through the SaaS world in August 2025: demanding no ransomware demand, no splashy defacement. Just stolen credentials, quietly forgotten and dangerously alive. The target was Salesloft Driftopens in a new tab, a marketing automation platform that connects the Drift AI chat agent with a Salesforce or Google Workspace instance, among others.