News

CSO Online8d
If you use OneDrive to upload files to ChatGPT or Zoom, don’t
Users could potentially allow access to the entire drive because of the way Microsoft implements OAuth in OneDrive File ...
A key Microsoft OneDrive feature has a worrying security flaw which could expose user data
Researchers found a flaw in Microsoft OneDrive File PickerThe flaw stems in the lack of fine-grained OAuth ...
Grip Security Launches Identity Threat Detection and Response 2.0 — Transforming SecOps for the SaaS Era
Grip ITDR 2.0 lets SecOps teams outpace threats, shrink risk and respond with speed and precisionBOSTON, June 05, 2025 (GLOBE ...
CPO Magazine3d
Security Flaw in Microsoft OneDrive File Picker Could Give Apps Full Cloud Storage Access
Researchers found a security flaw in OneDrive File Picker that grants apps access to any and all files in the account when ...
Billions of Chrome users at risk from new data-stealing browser vulnerability - here's how to stay safe
A newly uncovered zero-day vulnerability which affects both Windows and Linux systems could put billions of Google Chrome and ...
SecurityWeek8d
OneDrive Gives Web Apps Full Read Access to All Files
Excessive permissions and ambiguous consent statements may provide web apps uploading files to OneDrive with read access to ...
Google: Hackers target Salesforce accounts in data extortion attacks
Google has observed hackers claiming to be the ShinyHunters extortion group conducting social engineering attacks against ...
Security Boulevard2d
Stay Ahead of Identity Threats with Grip ITDR 2.0 | Grip
Users aren’t identity security experts. As they piece together tools and manage their own access, gaps emerge. Attackers love ...
Biometric Update3d
mDL, digital wallet spec interoperability demonstrated at OpenID event
The OpenID Foundation has announced the results on an interoperability demonstration held in May with various digital ...
VentureBeat21d
From OAuth bottleneck to AI acceleration: How CIAM solutions are removing the top integration barrier in enterprise AI agent deployment
Authentication might be trivial for human users, but for developers of agentic automation, it’s a cycle of complex one-off integrations and OAuth flows, each with its own security concerns.