-
Sponsored ContentOAuth risks: How to identify, investigate, and mitigate them
OAuth apps can make our digital lives much easier, but it can also be a huge headache for security teams. Learn more from Nudge Security about these OAuth risks and how to investigate them.
- June 12, 2024
- 10:01 AM
0
-
Microsoft: OAuth apps used to automate BEC and cryptomining attacks
Microsoft warns that financially-motivated threat actors are using OAuth applications to automate BEC and phishing attacks, push spam, and deploy VMs for cryptomining.
- December 12, 2023
- 06:53 PM
0
-
Sponsored Content
Free shadow SaaS inventory + security insightsDiscover all SaaS accounts ever created by anyone in your org, in minutes, along with insights on security risks and spend. Save time, money and effort by curbing SaaS sprawl and automating tasks like offboarding and user access reviews. Free trial.
-
Microsoft fixes Azure AD auth flaw enabling account takeover
Microsoft has addressed an Azure Active Directory (Azure AD) authentication flaw that could allow threat actors to escalate privileges and potentially fully take over the target's account.
- June 20, 2023
- 12:38 PM
- 0
-
Microsoft disables verified partner accounts used for OAuth phishing
Microsoft has disabled multiple fraudulent, verified Microsoft Partner Network accounts for creating malicious OAuth applications that breached organizations' cloud environments to steal email.
- January 31, 2023
- 10:13 AM
- 1
-
Microsoft: Exchange servers hacked via OAuth apps for phishing
Microsoft says a threat actor gained access to cloud tenants hosting Microsoft Exchange servers in credential stuffing attacks, with the end goal of deploying malicious OAuth applications and sending phishing emails.
- September 22, 2022
- 01:13 PM
- 1
-
Heroku admits that customer credentials were stolen in cyberattack
Heroku has now revealed that the stolen GitHub integration OAuth tokens from last month further led to the compromise of an internal customer database. The Salesforce-owned cloud platform acknowledged the same compromised token was used by attackers to exfiltrate customers' hashed and salted passwords from "a database."
- May 05, 2022
- 04:06 AM
- 0
-
Heroku forces user password resets but fails to explain why
Salesforce-owned Heroku is performing a forced password reset on a subset of user accounts in response to last month's security incident while providing no information as to why they are doing so other than vaguely mentioning it is to further secure accounts.
- May 04, 2022
- 01:57 PM
- 0
-
GitHub: How stolen OAuth tokens helped breach dozens of orgs
GitHub has shared a timeline of this month's security breach when a threat actor gained access to and stole private repositories belonging to dozens of organizations.
- April 27, 2022
- 05:04 PM
- 0
-
GitHub notifies owners of private repos stolen using OAuth tokens
GitHub says it notified all organizations believed to have had data stolen from their private repositories by attackers abusing compromised OAuth user tokens issued to Heroku and Travis-CI.
- April 19, 2022
- 12:55 PM
- 0
-
GitHub: Attacker breached dozens of orgs using stolen OAuth tokens
GitHub revealed today that an attacker is using stolen OAuth user tokens (issued to Heroku and Travis-CI) to download data from private repositories.
- April 15, 2022
- 07:09 PM
- 0
-
Microsoft, Google OAuth flaws can be abused in phishing attacks
Researchers have discovered a set of previously unknown methods to launch URL redirection attacks against weak OAuth 2.0 implementations.
- December 09, 2021
- 11:21 AM
- 0
-
Microsoft warns of increasing OAuth Office 365 phishing attacks
Microsoft has warned of an increasing number of consent phishing (aka OAuth phishing) attacks targeting remote workers during recent months, BleepingComputer has learned.
- February 05, 2021
- 12:07 PM
- 0
-
SANS shares details on attack that led to their data breach
SANS has shared the indicators of compromise for a recent phishing attack that compromised one of their email accounts and led to a data breach.
- August 14, 2020
- 07:19 PM
- 0
-
Google to Force OAuth in G Suite to Increase Security
Google announced that it will block less secure apps (LSAs) from accessing G Suite account data starting February 2021, following an initial stage of limiting their access during June 2020.
- December 16, 2019
- 05:37 PM
- 0
-
Phishing Attack Hijacks Office 365 Accounts Using OAuth Apps
A phishing campaign has been discovered that doesn't target a recipient's username and password, but rather uses the novel approach of gaining access to a recipient's Office 365 account and its data through the Microsoft OAuth API.
- December 10, 2019
- 10:14 AM
- 0
-
PayPal Removes "Magic Word" from OAuth Authentication Procedure
PayPal engineers have removed a "magic word" that would have allowed an attacker to obtain OAuth secret tokens for -- any -- PayPal application and access customer details.
- November 29, 2016
- 09:05 AM
- 0
