The Hacker News

Toxic Combinations: When Cross-App Permissions Stack into Risk

Toxic combinations form when AI agents, integrations, or OAuth grants bridge SaaS apps into trust relationships no single ...
Hosted on MSN

Vercel breach scope widens as OAuth compromise traced to malware

Vercel has confirmed that its recent security incident compromised more accounts than initially reported, tracing the breach to a third-party AI tool infected with Lumma Stealer malware. The attack ...

Vercel breach exposes the OAuth gap most security teams cannot detect, scope or contain

A Vercel employee's AI tool OAuth grant gave attackers access to internal systems via a four-hop kill chain. Here's what ...
InfoWorld

Hackers exploit Vercel’s trust in AI integration

Compromised Context.ai integration let attackers inherit Vercel employee access and reach internal systems, exposing a ...
WGN-TV

Zylo Becomes First SaaS Management Provider to Enhance Okta SSO Integration with OAuth for Improved Security and Data Privacy

INDIANAPOLIS, May 2, 2023 /PRNewswire/ -- Zylo, the enterprise leader in SaaS Management, today announced an upgrade to its Okta SSO integration with OAuth, which now offers automated license ...