Stolen OAuth tokens, which are at the root of these breaches, "are the new attack surface, the new lateral movement," a ...

Vercel confirmed that attackers accessed parts of its internal systems via a compromised third-party AI tool that used Google Workspace OAuth.

Device code phishing attacks that abuse the OAuth 2.0 Device Authorization Grant flow to hijack accounts have surged more than 37 times this year. In this type of attack, the threat actor sends a ...

Hundreds of organizations have been compromised daily by a Microsoft device-code phishing campaign that uses AI and ...

AI prompt injection attacks exploit the permissions your AI tools hold. Learn what they are, how they work, and how to ...

The new version of Agent Fabric brings cross-vendor control and deterministic process specifications to multi-agent workflows ...

Popular tool abuse, ClickFix, and identity-based attacks are among the most prevalent techniques bad actors are deploying ...

How mature is your AI agent security? VentureBeat's survey of 108 enterprises maps the gap between monitoring and isolation — ...

The execution layer has already shifted from humans to machines. This transition is not a future trend; it is the current ...

Vercel breach tied to AI tool exposes risks for crypto frontends, raising concerns over environment variables and ...

Linked Breach Unfolded. The breach traces back to a compromised Google Workspace account belonging to a Vercel employee, ...

Compare the best DAST tools in 2026. Our buyer's guide covers 10 dynamic application security testing solutions, key features ...