A recent breach of the business intelligence platform Klue has compromised at least four cybersecurity firms through a vulnerable Salesforce integration, allowing hackers to exploit OAuth tokens and gain unauthorized access. The attackers leveraged the Klue breach to infiltrate the systems of these firms, potentially granting them access to sensitive information and putting their clients at risk. This incident highlights the dangers of third-party vulnerabilities and the importance of securing integrations with external services. The fact that cybersecurity firms were affected1 underscores the sophistication of the attackers and the need for heightened vigilance in the industry. As a result, cybersecurity practitioners should be on high alert for potential downstream effects, including regulatory scrutiny and supply-chain disruptions, so what matters most is that firms must urgently review their own integrations and token management practices to prevent similar compromises.