Salesforce Disables Klue Integration After OAuth Token Theft Hits Customer Data

Salesforce disabled its Klue Battlecards integration after the Icarus extortion group exploited an old credential to steal OAuth tokens and access sensitive customer data. The incident was limited to the Klue application connection rather than a platform-wide Salesforce vulnerability.