资讯

Techopedia14 小时

Salesloft Drift Breach Shows Why SaaS Security Needs Overhaul

The Salesloft Drift breach exposed SaaS integration risks. Learn how attackers gained access and what steps businesses must ...
Security Boulevard1 天

How New Supply Chain Attacks Challenge SaaS Security: Lessons from UNC6395, UNC6040, and ...

SaaS supply chain attacks exploit SaaS-to-SaaS connections using stolen OAuth tokens. Get practical steps to reduce your risk ...

FIDO2 Was a Game-Changer—But It Can’t Be the Finish Line in Authentication

Fast IDentity Online 2 (FIDO2) was the second iteration of a standard released by the FIDO Alliance and World Wide Web Consortium (W3C). It was designed to replace passwords as a means of ...
Cloud Security Alliance1 天

API Security in the AI Era

Learn how AI-driven APIs reshape threat models and discover actionable security practices to protect data and prevent ...
The Hacker News2 天

⚡ Weekly Recap: Drift Breach Chaos, Zero-Days Active, Patch Warnings, Smarter Threats & More

This week, one story stands out above the rest: the Salesloft–Drift breach, where attackers stole OAuth tokens and accessed ...
Security Boulevard6 天

Salesloft Drift Breach Rolls Up Cloudflare, Palo Alto, Zscaler and Others

Cloudflare, Palo Alto Networks, and Zscaler are the latest among hundreds of victims of an expanding data-stealing attack by the UNC6395 threat group that is exploiting compromised OAuth tokens ...
CPO Magazine6 天

Hackers Steal OAuth Tokens via Salesloft Drift Integrations in Massive Salesforce Data Theft

Google Threat Intelligence Group has tracked threat actor UNC6395 stealing OAuth tokens via Salesloft Drift integrations in a ...
TMCnet6 天

Lit Protocol Launches Vincent Early Access for Building AI Agents in DeFi

Lit Protocol's Vincent Early Access is now live, giving developers immediate tools to create permissioned, non-custodial AI agents for real DeFi strategies, powered by onchain guardrails and ...