Security Boulevard

Attackers abuse OAuth’s built-in redirects to launch phishing and malware attacks

Researchers have found that attackers are abusing OAuth to send users from legitimate Microsoft or Google login pages to phishing sites or malware downloads.
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...
SiliconANGLE

Stytch and Cloudflare partner to secure Remote MCP servers with OAuth

Identity platform startup Stytch Inc. today unveiled Remote MCP Authorization, a new service created in partnership with Cloudflare Inc. that allows developers to add authorization to Remote MCP ...