Klue

A four-year-old prototype credential at competitive intelligence vendor Klue gave attackers access to OAuth tokens for 195 customer organizations — including Huntress, Recorded Future, HackerOne, LastPass, Tanium, Jamf, Snyk, and OneTrust. The third major Salesforce OAuth supply chain attack in twelve months, the Klue breach exposes a structural blind spot in enterprise SaaS security: non-human identities with persistent, broad API access that no one is monitoring. SaaS integration risk assessment matrix and supply chain incident response playbook inside.