Jamf Customer Data Exposed in Klue Supply Chain Attack
Jamf, a provider of Apple device management solutions, was impacted by the Klue supply chain attack. The incident involved unauthorized access to customer data stored in Salesforce instances, stemming from compromised OAuth tokens from the Klue platform. The Icarus extortion group claimed responsibility for the attack.
Signal context
First seen: Jun 24, 2026
Last updated: Jun 24, 2026
Status: Public signal
Key points
- Supply chain attack via Klue, a third-party vendor.
- Salesforce data accessed using compromised OAuth tokens.
- Icarus extortion group claimed responsibility.
Signal analysis
BetaThis analysis groups the signal by industry, likely incident action and impacted security area. It helps compare this signal with other published signals without treating the labels as final determinations.
Sector: Information
Likely country: Location not provided
Watch internet-facing systems, credential abuse and exploit activity.
- Source type: outside the affected organization
Impact area: Confidentiality
Likely asset: User or customer data
- 23 signals in the same sector
- 68 signals with the same likely impact area
- 1 signal linked to this organization/domain
External sources
More Cybersecurity Firms Disclose Impact From Klue Hackhttps://www.securityweek.com/more-cybersecurity-firms-disclose-impact-from-klue-hack/Public source from securityweek.com.
Security Check-in Quick Hits: Tata Electronics Breach, Klue Supply Chain Attack, FortiBleed Campaign, libssh2 Flaw, and Cisco CUCM Exploitationhttps://www.rodstrent.com/post/security-check-in-quick-hits-tata-electronics-breach-klue-supply-chain-attack-fortibleed-campaign-libssh2-flaw-and-cisco-cucm-exploitationPublic source from rodstrent.com.
LastPass confirms data breach after hacker compromises supply chain — here's what we knowhttps://www.techradar.com/pro/security/lastpass-confirms-data-breach-after-hacker-compromises-supply-chain-heres-what-we-knowPublic source from techradar.com.
Related signals
Grouped by why the signal is relevant.
HackerOne Affected by Klue Supply Chain Attack
Cybersecurity firm HackerOne was among the organizations impacted by the Klue supply chain attack, which involved unauthorized access to customer data within Salesforce environments. The attack leveraged compromised OAuth tokens from the Klue platform.
Snyk Affected by Klue Supply Chain Data Breach
Developer security platform Snyk was impacted by the Klue supply chain attack, which led to unauthorized access to customer data within Salesforce environments. The attack leveraged compromised OAuth tokens from the Klue platform.
Insurity Customer Data Exposed in Klue Supply Chain Attack
Insurity, a leading provider of cloud-based software for insurance carriers, was impacted by the Klue supply chain attack. The incident involved unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform.
OneTrust Customer Data Exposed in Klue Supply Chain Attack
OneTrust, a privacy, security, and governance technology company, was among the organizations affected by the Klue supply chain attack. The incident involved unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform.
Huntress Impacted by Klue Supply Chain Attack
Cybersecurity company Huntress was affected by the Klue supply chain attack, which resulted in unauthorized access to customer data within Salesforce environments. The attack utilized compromised OAuth tokens from the Klue platform.
Sprout Social Data Compromised in Klue Supply Chain Attack
Sprout Social, a social media management platform, was among the companies affected by the Klue supply chain attack. The incident led to unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform. The Icarus extortion group claimed responsibility for the attack.