A Vercel employee's AI tool OAuth grant gave attackers access to internal systems via a four-hop kill chain. Here's what ...

PALO ALTO, Calif., April 25, 2024 -- Salt Security today announced the release of its new multi-layered OAuth protection package to detect attempts to exploit OAuth and proactively fix vulnerabilities ...

The OAuth keys and secrets that official Twitter applications use to access users’ Twitter accounts have been leaked in a post to Github this morning. The OAuth keys and secrets that official Twitter ...

Digital identity is becoming increasingly important as enterprises strive to protect and control access to online resources. A series of maturing standards is helping make identity management and ...

Google’s new MFA requirement for the Ads API strengthens security but may require advertisers to adjust authentication ...

HTTP Got TLS. APIs Got OAuth. MCP Got Nothing. Permit.io Launches the Gateway to Fix That. AI agents are calling enterprise tools in production today with no fine-grained authorization, no delegation ...

Google previewed Google Play services at Google I/O, and it finally just began the official launch of its new platform designed to help developers integrate Google products, such as Google+, into ...

Booking.com, one of the world’s largest online travel agencies, recently patched a vulnerability in its implementation of the OAuth protocol that could have allowed attackers to gain access to ...

Facebook has released an updated Apple mobile SDK today, changing the name from iPhone SDK to Facebook SDK for iOS. The two major updates are the addition of the Graph API and OAuth 2.0. In a blog ...