Google Threat Intelligence Group has tracked threat actor UNC6395 stealing OAuth tokens via Salesloft Drift integrations in a ...

SSOJet delivers far more than "just SSO": we give your team the visibility, control, and security intelligence needed to defeat device flow phishing and build a future-proof identity management ...

ShinyHunters compromised Google, Qantas & dozens more using OAuth device flow attacks—bypassing MFA without exploiting a single software bug. My deep-dive analysis reveals how they did it and what ...

The GitHub OAuth attack exposed a security blind spot in the ever-growing web of permissions spanning developers, service ...

Google expands Salesloft Drift breach scope beyond Salesforce; Salesloft says core platform safe, isolated to Drift app.

Cybersecurity company Zscaler warns it suffered a data breach after threat actors gained access to its Salesforce instance ...

Google has confirmed a massive security breach affecting nearly 2.5 billion Gmail users. Given the severity and number of ...

Lit Protocol's Vincent Early Access is now live, giving developers immediate tools to create permissioned, non-custodial AI agents for real DeFi strategies, powered by onchain guardrails and ...

Gustaf Sahlman, CEO of Swedish ID management firm Curity, argues Europe must reclaim its tech stack to secure digital sovereignty.

Here’s this week’s cybersecurity recap in plain terms, built for leaders and practitioners who need the signal, not the noise.