Threat actors are targeting technology, manufacturing, and financial organizations in campaigns that combine device code phishing and voice phishing (vishing) to abuse the OAuth 2.0 Device ...

Unwitting employees register a hacker’s device to their account; the crook then uses the resulting OAuth tokens to maintain persistent access.

OpenClaw runs locally, but the risk lives in SaaS. Learn how OAuth tokens, API access, and AI agents create identity-based exposure across platforms.

Explore how AI agents enhance identity verification and authentication systems with smarter fraud detection and seamless user security.

The ShinyHunters extortion gang has claimed responsibility for breaching Dutch telecommunications provider Odido and stealing ...

StrongestLayer today released a new threat intelligence report, From Nation-States to Amateur Hackers: Why QR Code Phishing Evades Email Security, analyzing approximately 200 advanced QR code phishing ...

Self-hosted agents execute code with durable credentials and process untrusted input. This creates dual supply chain risk, ...

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users from legitimate sign‑in pages to attacker‑controlled infrastructure.

Today, Wispr has announced the launch of Flow for Android. Finally, the company says, there is a version it believes the world’s 4 billion Android users deserve.