Stolen OAuth tokens used to download data from dozens of organizations, GitHub warns

GitHub reported that threat actors used stolen OAuth user tokens to exfiltrate private data from several organizations. GitHub uncovered threat actors using stolen OAuth user tokens to gain access to their repositories and download private data from several organizations. Threat actors abused stolen OAuth user tokens issued to two third-party OAuth integrators, Heroku and Travis-CI, […]

Continue Reading

Hybrid cloud campaign OiVaVoii targets company executives

A new hacking campaign, tracked as ‘OiVaVoii’, is targeting company executives with malicious OAuth apps. Researchers from Proofpoint have uncovered a new campaign named ‘OiVaVoii’ that is targeting company executives, former board members, Presidents and managers with bogus OAuth apps and cleverly-crafted lures sent from compromised Office 365 accounts. Microsoft has blocked many of the […]

Continue Reading

More Than 180 OAuth 2.0 Cloud Malware Apps Discovered

  Researchers issued an alert to companies using cloud apps on Wednesday, revealing that in 2020, they discovered more than 180 different malicious open authorization (OAuth) applications targeting 55 percent of their customers with a 22 percent success rate.  Although OAuth apps add business functionality and user interface improvements to major cloud platforms like Microsoft […]

Continue Reading

Comment les cybercriminels exploitent OAuth pour distribuer des applications malveillantes

Si les applications légitimes OAuth « Open Authorization » sont devenues légion dans les stores d’applications d’entreprise pour l’ajout de fonctionnalités utiles (analyse, sécurité, CRM, etc.) au sein des plateformes cloud telles que Microsoft 365 et Google Workspace, elles constituent désormais un vecteur de menaces prépondérant. The post Comment les cybercriminels exploitent OAuth pour distribuer […]

Continue Reading