> TritonInfoSec News
Home / Jun 21, 2026 / Story
0
#7 BleepingComputer general June 19, 2026 at 22:31 UTC

Klue OAuth breach victim list grows as Icarus hackers claim attack

By Lawrence Abrams

AI Summary

Market intelligence platform Klue confirmed that the Icarus extortion group stole OAuth tokens used to connect customer Salesforce environments, with the victim list continuing to grow. The breach highlights the risk of OAuth credential exposure in B2B SaaS platforms where a single token compromise can provide lateral access to downstream enterprise CRM data.

Read full article → https://www.bleepingcomputer.com/news/security/klu…

Relevance score: 78.0/100

# More from June 21

  1. 1
    CISA warns Fortinet users to secure devices after FortiBleed leak BleepingComputer
  2. 2
    FortiBleed: 86,000 Fortinet Device Credentials Compromised SecurityWeek
  3. 3
    15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown SecurityWeek
  4. 4
    Police raid malware network tied to Russia's Evil Corp hacker group The Record
  5. 5
    Microsoft links Mastra AI supply chain attack to North Korean hackers BleepingComputer
  6. 6
    Cybersecurity Firms Impacted by Klue Supply Chain Attack SecurityWeek
  7. 8
    AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution The Hacker News
  8. 9
    Hackers Exploit Gravity SMTP WordPress Plugin Bug to Expose API Keys The Hacker News
  9. 10
    Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone The Hacker News