The Hacker News

What GTG-1002 and Claude-Style Attacks Mean for SaaS Verification

GTG-1002 shows how AI can scale intrusions fast. Here’s why static OAuth trust is risky for SaaS and how to verify apps and tokens nonstop.
Bleeping Computer

OAuth Device Code Phishing: Azure vs. Google Compared

Come along with me on a journey as we delve into the swirling, echoing madness of identity attacks. Today, I present a case study on how different implementations of OAuth 2.0, the core authentication ...
The Hacker News

SaaS Breaches Start with Tokens - What Security Teams Must Watch

Token theft is a leading cause of SaaS breaches. Discover why OAuth and API tokens are often overlooked and how security teams can strengthen token hygiene to prevent attacks. Most companies in 2025 ...
IEEE

Is Your OAuth Middleware Vulnerable? Evaluating Open-Source Identity Providers’ Security

Abstract: The OAuth 2.0 protocol is a widely adopted standard for online authorization. Given its widespread use, it has received substantial attention from the research community towards assessing ...
Cloud Security Alliance

The Salesloft Drift OAuth Supply-Chain Attack: Cross-Industry Lessons in Third-Party Access Visibility

The August 2025 Salesloft Drift breach demonstrates a systemic security blind spot across all industries: third-party delegated access through OAuth integrations. Over 700 organizations — including ...
Awful Announcing

Breanna Stewart shocked by reporter’s question about Liberty head coach’s job security

The New York Liberty’s bid to repeat as WNBA champions ended Friday night in a 79-73 loss to the Phoenix Mercury in Game 3 of their playoff series. It wasn’t for a lack of effort from Breanna Stewart, ...
CPO Magazine

New Round of Stolen OAuth Tokens Obtained From Salesloft Drift Platform Led to Compromise of Cloudflare, Palo Alto Networks & Zscaler

An as-of-yet undiagnosed compromise of the Salesloft Drift AI-driven platform has led to a rash of stolen OAuth tokens, in turn creating downstream breaches at some of the biggest names in the ...
CPO Magazine

Hackers Steal OAuth Tokens via Salesloft Drift Integrations in Massive Salesforce Data Theft

Google Threat Intelligence Group (GTIG) warns that attackers are stealing OAuth tokens via Salesloft Drift integrations in a massive Salesforce data theft. Alphabet’s GTIG and Mandiant attributed the ...
SecurityWeek

Security Firms Hit by Salesforce–Salesloft Drift Breach

Hackers accessed customer contact information and case data from Salesforce instances at Cloudflare, Palo Alto Networks, and Zscaler. Cybersecurity firms Cloudflare, Palo Alto Networks, and Zscaler on ...
Ars Technica

Google warns that mass data theft hitting Salesloft AI agent has grown bigger

Google is advising users of the Salesloft Drift AI chat agent to consider all security tokens connected to the platform compromised following the discovery that unknown attackers used some of the ...
GitHub

Log on OpenID connect fallback

I have an open-id connect provider (id-austria) that replies to a token-request with an invalid token (only 2 parts, not 3). spring-security then tries to get the id-token from the user-info-uri. But ...