Attackers leveraged stolen secrets to hijack integrations and access customer data, highlighting the need for enterprises to audit connected apps and enforce token hygiene.

The attack on Gainsight-published applications connected to Salesforce probably affects hundreds of firms, experts have ...

Salesforce says it revoked refresh tokens linked to Gainsight-published applications while investigating a new wave of data ...

Salesforce probes suspicious OAuth activity tied to Gainsight, sparking concerns over exposed data and fueling fresh urgency ...

Salesforce is probing unusual activity in Gainsight apps that may have exposed customer data, while ShinyHunters claims a new ...

The threat landscape continues to evolve, and cybersecurity professionals must keep pace with threat actors’ changing tactics and objectives. A recent supply attack that reportedly affected hundreds ...

They keep coming back for more Salesforce has disclosed another third-party breach in which criminals - likely ShinyHunters ...

So, I have a bunch of R packages for interacting with Azure. One of them does authentication with AA https://github.com/Azure/AzureAuth The package currently caches ...

Salesforce has warned of detected "unusual activity" related to Gainsight-published applications connected to the platform.

Omer Tsarfati and his team at security firm CyberArk are now finally able to discuss a major OAuth 2.0 vulnerability that affects Microsoft Azure web services which they have been sitting on since ...