SEARCH
Archive
Phishing Attacks Abuse Microsoft OAuth Implementations
Starting in February 2020, attackers have leveraged weaknesses that occur “by design” in OAuth 2.0 implementations from Microsoft and GitHub.
FireEye Releases PwnAuth, an OAuth Attack Testing Platform
FireEye has released PwnAuth, an open source tool designed to help security professionals test their organization's ability to detect and respond to attacks abusing OAuth.