CRM Data Theft Tied to OAuth Tokens Stolen From Third-Party Market Intelligence App Salesforce disabled connections to its customer relationship management environment from third-party app Klue Battlecards as a response to a "security incident." Attackers breached Klue's platform, generated OAuth tokens for Salesforce and stole data, now being held to ransom.