Skip to main content
FreeIntelHub
Feed Threat Feed Search Trending
Intelligence CVE Priority Vulnerability IOC Lookup IOC Feed YARA Rules Phishing Lookup Exploit Lookup Pastes Dark Web
Adversaries Threat Groups Software Campaigns
Explore Dashboard Geo Map Heatmap MITRE ATT&CK
Browse Sources Vendors Categories Sectors
RSS API
FreeIntelHub
/
Sign In

Salesforce

20 articles

SecurityWeek Data Breach Salesforce Jun 26

More Klue Breach Victims Identified as Hackers Get Hacked

Roughly two dozen companies have notified their customers of the Klue-Salesforce incident impact. The post More Klue Breach Victims Identified as Hackers Get...

SecurityWeek →

Information Security Buzz Data Breach Salesforce Intel Jun 24

Klue supply chain breach exposes Salesforce data at several security firms

A supply chain attack targeting Klue, a competitive intelligence platform, has lead to the theft of Salesforce data from multiple entities, including several...

T1195

Information Security Buzz →

SecurityWeek General Salesforce Jun 24

BeyondTrust, LastPass Impacted by Klue-Salesforce Incident

Over a dozen Klue customers have confirmed that hackers stole data from their Salesforce instances. The post BeyondTrust, LastPass Impacted by Klue-Salesforc...

SecurityWeek →

Help Net Security Supply Chain Salesforce Intel Jun 24

LastPass customer data exposed through Klue supply chain attack

LastPass disclosed that attackers used OAuth tokens compromised in a supply chain attack on Klue, a market intelligence platform that integrates with CRM and...

T1195 1 IOC

Help Net Security →

BleepingComputer Data Breach Salesforce Jun 23

LastPass confirms data breach in Klue supply chain attack

LastPass announced that hackers accessed customer data from its Salesforce environment after stealing the company's OAuth tokens in the Klue supply chain att...

T1195

BleepingComputer →

CSO Online Data Breach Salesforce Intel Jun 22

Klue breach exposed Salesforce CRM data through stolen OAuth tokens

An attacker broke into competitive-intelligence vendor Klue, stole OAuth tokens its customers use to connect to Salesforce and other platforms, and accessed ...

CSO Online →

HackRead General Salesforce Jun 22

Salesforce Disables Klue Integration After OAuth Token Theft Hits Customer Data

Icarus extortion group used a legacy Klue Battlecards credential to bypass security and steal bulk Salesforce records from affected companies.

HackRead →

Infosecurity Magazine Data Breach Salesforce Intel Jun 22

Klue Breach Enables Hackers to Compromise Cybersecurity Firms via OAuth Tokens

At least five cybersecurity firms confirmed they have been affected by a breach of business intelligence platform Klue via Salesforce integration

Infosecurity Magazine →

BleepingComputer Data Breach Salesforce Intel Jun 19

Klue OAuth breach victim list grows as Icarus hackers claim attack

Market intelligence platform Klue has publicly confirmed a recent security incident that allowed threat actors to steal OAuth tokens used to connect to custo...

BleepingComputer →

Help Net Security Data Breach Salesforce Intel Jun 19

Klue breach lead to Salesforce data theft, Huntress affected

Cybersecurity vendor Huntress was among multiple companies hit by a breach originating at Klue, a market intelligence platform used to integrate CRM and sale...

T1041

Help Net Security →

SecurityWeek Supply Chain Salesforce Jun 19

Cybersecurity Firms Impacted by Klue Supply Chain Attack

The hackers exfiltrated data from Salesforce instances of Klue customers, such as Huntress and Recorded Future. The post Cybersecurity Firms Impacted by Klue...

T1041 T1195

SecurityWeek →

The Hacker News General Salesforce Intel Jun 19

Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer Data

Salesforce has revealed that it disabled the Klue Battlecards app integration within its platform in response to a security incident impacting the competitiv...

The Hacker News →

GBHackers Vulnerability Disclosure Salesforce Jun 19

Hackers Exploit Klue Integration to Steal Salesforce CRM Data Using OAuth Tokens

Hackers are actively exploiting a compromised Klue Battlecards integration to extract sensitive Salesforce CRM data by abusing OAuth tokens, according to new...

GBHackers →

SC Media Data Breach Salesforce Jun 18

Icarus threat actors exploit Klue OAuth breach to steal Salesforce data

The attack involved the theft of OAuth credentials from Klue's Battlecards integration, which threat actors then used to access and exfiltrate data from cust...

T1041

SC Media →

BleepingComputer Data Breach Salesforce Intel Jun 18

Klue OAuth breach linked to 'Icarus' Salesforce data theft attacks

Market intelligence platform Klue suffered a OAuth breach that enabled the "Icarus" threat actors to steal Salesforce CRM data from multiple organizations in...

T1041

BleepingComputer →

BleepingComputer Data Breach Salesforce Jun 15

Infinite Campus data breach affects 137,000 school staff accounts

The ShinyHunters extortion gang stole personal information from more than 137,000 school staff accounts in a Salesforce data theft attack that targeted the w...

T1041

BleepingComputer →

Security Affairs Data Breach Salesforce May 18

ShinyHunters hack 7-Eleven: franchisee data and Salesforce records exposed

7-Eleven confirmed a breach after ShinyHunters claimed theft of over 600,000 Salesforce records and franchisee data. 7-Eleven has confirmed a data breach aft...

Security Affairs →

SecurityWeek Data Breach Salesforce May 18

7-Eleven Data Breach Confirmed After ShinyHunters Ransom Demand

The hackers claimed to have stolen more than 600,000 Salesforce records, including personal information and corporate data. The post 7-Eleven Data Breach Con...

SecurityWeek →

Infosecurity Magazine Campaigns Salesforce Mar 10

ShinyHunters Targets Hundreds of Websites in New Salesforce Campaign

Prolific ShinyHunters group claims to have stolen data from nearly 400 websites in Experience Cloud attacks

Infosecurity Magazine →

Mandiant Blog Advisory Salesforce Sep 30

Cybercrime Observations from the Frontlines: UNC6040 Proactive Hardening Recommendations

Written by: Omar ElAhdan, Matthew McWhirt, Michael Rudden, Aswad Robinson, Bhavesh Dhake, Laith Al, Ravi Kumar Raja Update (Nov. 21): In response to the Sale...

Mandiant Blog →

1 2 Next page»
FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA