The Salesloft Drift breach exposed SaaS integration risks. Learn how attackers gained access and what steps businesses must ...

Fast IDentity Online 2 (FIDO2) was the second iteration of a standard released by the FIDO Alliance and World Wide Web Consortium (W3C). It was designed to replace passwords as a means of ...

Learn how AI-driven APIs reshape threat models and discover actionable security practices to protect data and prevent ...

Google Threat Intelligence Group has tracked threat actor UNC6395 stealing OAuth tokens via Salesloft Drift integrations in a ...

Lit Protocol's Vincent Early Access is now live, giving developers immediate tools to create permissioned, non-custodial AI agents for real DeFi strategies, powered by onchain guardrails and ...

The Salesloft Drift breach is expanding fast. Learn what’s at risk and the 7 critical steps security teams should take to ...

The Unit 42 team within PAN are still combing through things, “conducting enhanced, continuous monitoring of our systems and the dark web for any potential exposure ... audit trail, and API access ...

Google expands Salesloft Drift breach scope beyond Salesforce; Salesloft says core platform safe, isolated to Drift app.

ShinyHunters compromised Google, Qantas & dozens more using OAuth device flow attacks—bypassing MFA without exploiting a single software bug. My deep-dive analysis reveals how they did it and what ...

A security researcher said flaws in a carmaker’s online dealership portal exposed the private information and vehicle data of its customers, and could have allowed hackers to remotely break into any ...

As awareness grows around many MFA methods being “phishable” (i.e. not phishing resistant), passwordless, FIDO2-based authentication methods (aka. passkeys) like YubiKeys, Okta FastPass, and Windows ...

Two related issues occurred during Cline extension setup: OAuth Authentication Failure: When selecting "Get Started for Free" and completing GitHub OAuth authentication, the browser tab closes after a ...