Bleeping Computer

Klue OAuth breach victim list grows as Icarus hackers claim attack

ReliaQuest observed attackers generating OAuth tokens and using Python scripts to query Salesforce's API for extended periods, as data was stolen. Huntress later disclosed that its own Salesforce ...