The Salesloft Drift breach exposed SaaS integration risks. Learn how attackers gained access and what steps businesses must ...

Fast IDentity Online 2 (FIDO2) was the second iteration of a standard released by the FIDO Alliance and World Wide Web Consortium (W3C). It was designed to replace passwords as a means of ...

Learn how AI-driven APIs reshape threat models and discover actionable security practices to protect data and prevent ...

This week, one story stands out above the rest: the Salesloft–Drift breach, where attackers stole OAuth tokens and accessed ...

Google Threat Intelligence Group has tracked threat actor UNC6395 stealing OAuth tokens via Salesloft Drift integrations in a ...

Lit Protocol's Vincent Early Access is now live, giving developers immediate tools to create permissioned, non-custodial AI agents for real DeFi strategies, powered by onchain guardrails and ...

The Salesloft Drift breach is expanding fast. Learn what’s at risk and the 7 critical steps security teams should take to ...

The Unit 42 team within PAN are still combing through things, “conducting enhanced, continuous monitoring of our systems and the dark web for any potential exposure ... audit trail, and API access ...

Google expands Salesloft Drift breach scope beyond Salesforce; Salesloft says core platform safe, isolated to Drift app.

A comprehensive Model Context Protocol (MCP) server implementation demonstrating OAuth 2.1 authorization, dual transport support (stdio/HTTP), and all core MCP capabilities following the 2025-06-18 ...

ShinyHunters compromised Google, Qantas & dozens more using OAuth device flow attacks—bypassing MFA without exploiting a single software bug. My deep-dive analysis reveals how they did it and what ...

Abstract: As Web APIs become integral to modern digital ecosystems, their increasing complexity and widespread adoption have made them appealing targets for cyberattacks. Effective detection and ...