Dark Reading

Scope of Salesforce Attacks Expands as Icarus Leaks Data

More victims have emerged after attackers breached application vendor Klue and used its OAuth tokens to steal customers' ...

Claude Code, Copilot and Codex all got hacked. Every attacker went for the credential, not the model.

Six teams exploited Claude Code, Copilot, Codex, and Vertex AI in nine months. Every attack hit runtime credentials that IAM tools never tracked.

Material Security Study Reveals OAuth Risk Growing With the Rise of AI, Creating New Concerns for Organizations

Analysis of 22,332 OAuth-connected apps finds that 91% of AI and automation apps in the dataset appeared in just the last 16 ...
InfoWorld

A wake-up call for identity security in devops

The GitHub OAuth attack exposed a security blind spot in the ever-growing web of permissions spanning developers, service accounts, and third-party OAuth apps. Here’s how to address it. In early 2025, ...
Bleeping Computer

OAuth risks: How to identify, investigate, and mitigate them

We’re now all too familiar with the ubiquitous “Sign in with Google” button we encounter all over the internet. For most of us, it has become the go-to “easy button” for managing the sprawling set of ...
techtimes

Cloudflare OAuth Opens to All Developers After Zero-Downtime Hydra Upgrade

Cloudflare ended years of partner-only restrictions on Wednesday, opening self-managed OAuth 2.0 to every developer on its platform. The move eliminates the manual onboarding process that previously ...

Cloudflare: Own OAuth apps now for all developers

Cloudflare is making its OAuth ecosystem accessible to all customers. Companies can now create their own OAuth applications.
Geeky Gadgets

Creating custom GPTs with OAuth Authentication for improved security

Designing custom Generative Pre-trained Transformers (GPTs) and adding OAuth Authentication is a big step for anyone who want to improve their custom GPTs. This integration makes it possible to create ...