ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
HIGH Cloud

LastPass discloses customer data access after Klue token theft

Source headline: LastPass confirms data breach in Klue supply chain attack

Threat level High
Signal strength 75/100
Source confidence 1 source
Published 1 hour ago

Intelligence Summary

LastPass says attackers obtained OAuth tokens tied to its Salesforce environment during the Klue supply chain incident. The stolen tokens were used to access customer data that LastPass later identified as exposed. LastPass is linking this exposure to the earlier token theft rather than a direct compromise of its Salesforce systems. Affected data types were not fully detailed in the announcement, but the company states it has taken steps to contain the issue. Users should review LastPass account security and watch for guidance from the company regarding potential account risks.

Recommended Action

Review affected assets, schedule urgent remediation, and monitor related indicators.

Topics

#supply-chain #oauth #salesforce #klue #lastpass
Original reporting BleepingComputer LastPass confirms data breach in Klue supply chain attack
Open original source

Related Pulse Signals

View all signals
High · Cloud Klue confirms OAuth token theft from Salesforce integrations tied to Icarus High · Cloud Klue supply-chain breach exposed Salesforce data from security firms High · Cloud Salesforce blocks Klue Battlecards integration after OAuth token misuse High · Cloud Klue OAuth breach exposes Salesforce CRM data in Icarus extortion