Hackers used a backdoor through a little-known third-party app to steal LastPass customer data.
An attacker broke into competitive-intelligence vendor Klue, stole OAuth tokens its customers use to connect to Salesforce ...
ReliaQuest observed attackers generating OAuth tokens and using Python scripts to query Salesforce's API for extended periods, as data was stolen. Huntress later disclosed that its own Salesforce ...
Salesforce disabled Klue Battlecards integration after attackers used compromised OAuth tokens to access customer CRM data ...
Salesforce disabled connections to its customer relationship management environment from third-party app Klue Battlecards as ...
More Salesforce instances have been breached by threat actors abusing a third-party application integration, this time through Klue's Battlecards app. The attacks, which are the latest in a series of ...
Front-end software development startup Vercel Inc. introduced a set of new products today at Ship, its annual conference, to deepen its agentic artificial intelligence infrastructure platform to align ...
As agents become the primary way software is built and deployed, Vercel connects its frontend, backend, and agent tooling into a single platform for shipping and running agents at scale.
Low-code cloud services that allow users to create and run their own sandboxed code could be compromised by multistep exploit chains, leading to a complete platform takeover, if software-as-a-service ...
Credential theft fell to 13% of breach vectors in 2026. Attackers now bypass MFA via help desk resets and OAuth token theft. Five attack surfaces mapped.