Security Boulevard

OAuth Scopes & Consent: Complete Guide to Secure API Authorization

Learn how to design secure OAuth scopes and consent flows for enterprise applications. A complete guide for CTOs on API ...

Obsidian Security targets rising tide of SaaS integration threats

Obsidian pointed to last summer’s breach of Salesloft Inc.’s cloud sales platform as one of the largest and most recent ...
Geeky Gadgets

Creating custom GPTs with OAuth Authentication for improved security

Designing custom Generative Pre-trained Transformers (GPTs) and adding OAuth Authentication is a big step for anyone who want to improve their custom GPTs. This integration makes it possible to create ...
techtimes

From OAuth to JWT: Nikhil Chandrashekar's Comprehensive Guide to Secure Authentication

In today's interconnected digital world, secure authentication is paramount, forming the backbone of reliable and safe digital applications. As one of the industry's most seasoned experts and leaders, ...
InfoWorld

A wake-up call for identity security in devops

The GitHub OAuth attack exposed a security blind spot in the ever-growing web of permissions spanning developers, service accounts, and third-party OAuth apps. Here’s how to address it. In early 2025, ...

ConsentFix debrief: Insights from the new OAuth phishing attack

ConsentFix is an OAuth phishing technique abusing browser-based authorization flows to hijack Microsoft accounts. Push ...
TechRadar

A key Microsoft OneDrive feature has a worrying security flaw which could expose user data

Researchers found a flaw in Microsoft OneDrive File Picker The flaw stems in the lack of fine-grained OAuth permissions Microsoft acknowledges the flaw, but hasn't fixed it yet A vulnerability in ...