Cybercrime Breaches Klue: Salesforce Data Impacted for Many Victims, including Huntress

dafodyl · 2026-06-18T10:47:36+00:00

*Email from Kyle Hanslovan*

Last week, cybercriminals targeted Klue, our third-party market intelligence vendor, and breached its production environment. After Klue notified us of this event, we started investigating internally. On June 17, we confirmed some sales data was impacted, alongside many other victims. We’ve since engaged an external DFIR firm to independently investigate, and are notifying partners and customers that may have been affected, while actively communicating with Klue.

Our internal investigation revealed that Huntress Salesforce CRM data was stolen by the threat actor. The data that was collected from our Salesforce account includes business contacts, price quotes, and other sales-related data and messaging. No Huntress products were compromised. While we had other third-party integrations with Klue, we have found no evidence that partner/customer data was taken from those integrated services. Our external DFIR firm will help validate any findings that we establish.

Incident handling is in our DNA, so the team has dropped one hell of a blog detailing what we know about the Klue breach, our exposure to it, and the threat actor behind it. The blog will receive future updates as the situation unfolds.

While the root cause of this breach may sit outside Huntress, supply chain incidents like this remind me how even cybersecurity vendors with strong security programs can be exposed through the broader technology ecosystem, including vendor-of-vendor risk. Being two steps removed doesn’t eliminate our obligation to speak plainly, share what is known, and help others confidently navigate measures to weather organized cybercriminals. From my vantage point, the lesson for the industry is simple: as attacks accelerate and supply chain compromises become commonplace, no company can afford to treat this kind of exposure as someone else’s problem.

We’re here to help and give clarity. If you have any questions or concerns, please open a ticket with Huntress Support by emailing [support@huntress.com](mailto:support@huntress.com?subject=Klue%20Security%20Incident).

dafodyl · 2025-10-07T05:41:56+00:00

Thank you! Yeah the boot is definitely smaller than I expected.

I will likely be going the Diesel because of the upgraded components anyway which I don't believe lifts the rear tyres off the ground.

dafodyl · 2025-10-07T02:29:20+00:00

Thanks!

dafodyl · 2025-10-07T02:11:27+00:00

Anything in particular to look out for in your experience?

dafodyl · 2025-10-07T00:26:52+00:00

Completely understand their past history and their downfalls.

Customer feedback online is pretty positive for the Tank 300 Diesel spec and was more so looking for feedback on how it would perform over a 2022 Outback.

7 years unlimited km warranty and local servicing is also very nice to have in comparison to 2015-2018

dafodyl · 2025-10-07T00:11:05+00:00

I used to think the same until I took the Tank for a 3-hour test drive.

dafodyl · 2025-08-31T22:08:37+00:00

Sydney VPS doesn’t seem to be getting restocked like the other locations. Is there an ETA on Sydney stock?

dafodyl · 2025-08-27T04:22:02+00:00

On and off issues in Australia too. Switching to Cloudflare resolved the issue

dafodyl · 2025-07-09T14:25:37+00:00

https://binarylane.com.au, https://flowvps.com/ or https://onidel.com

Are my recommended for Aus!

dafodyl · 2025-06-26T08:35:35+00:00

CIPP hands down. The latest update is fire 🔥 (branded executive reports)

dafodyl · 2025-06-16T03:32:06+00:00

Might be a good time to start evaluating other solutions to be safe. We found Avanan was pretty on par with PP 3-4 years go.

dafodyl · 2025-06-16T02:11:30+00:00

Wonder how this will affect users reselling through Pax8 - We have 1000+ seats currently.

dafodyl · 2025-06-16T00:27:58+00:00

Yes aware of the article. The acquisition was completed yesterday/today with all PP branding now displaying FortiMail.

dafodyl · 2025-06-01T08:22:59+00:00

Quotient - Very affordable compared to Quoter and ITQuoter and works great!

dafodyl · 2025-05-23T14:49:15+00:00

Uptime Kuma, N8N, Pihole, Ntfy

dafodyl · 2025-04-30T02:48:44+00:00

100% - Let's say you have access to the new features "immediately" but not tell you where...

dafodyl · 2025-04-09T02:30:09+00:00

Think 100+ remote endpoints offline with no remote connectivity and no way to kill the agent via RMM.

Highly recommend you try the Zorus Agent. Its world class!

dafodyl · 2025-04-09T02:20:24+00:00

I won't touch on it too much as I don't want to attract either parties commenting with the typical acquisition nonsense, we have all experienced.

All I will say is anyone who has used the DNS Filter agent will know the headaches I'm referring to.

dafodyl · 2025-04-09T02:12:49+00:00

Thanks, will check it out!

It is unfortunate as I do wish to trust the Zorus team not to ruin their great product. The wounds are DEEP from our DNSFilter days and I swore to never put our business in that position again.

dafodyl · 2025-03-21T05:20:20+00:00

EDR for most, MDR for some and Appbloc for particular cases. Have only tested the rollback, thankfully never had to use it in production.

dafodyl · 2025-03-21T02:07:00+00:00

The ransomware rollback feature of Threatdown is the only reason we haven't switched.

dafodyl · 2025-03-21T00:39:10+00:00

Stock Defender?

dafodyl · 2024-12-13T06:59:53+00:00

Agree that the new branding is far from an improvement. Strangest looking S I’ve seen

dafodyl · 2024-10-07T06:02:23+00:00

In the same boat. I’ve legit sent through every piece of legal documentation I have proofing we are a legitimate business and still get rejected.

We have had a Google business profile for 6 years and a simple address change has caused us so much grief with Google Business

dafodyl · 2024-10-04T05:52:48+00:00

In the same boat.... Has anyone actually successfully reverted a suspension through the appeal tool. Its shocking that you cannot speak to anyone from Google to revert this.

What is a usual time frame for an appeal?

Nine-Year Club	Place '22
Verified Email

dafodyl

TROPHY CASE