Vue normale

Il y a de nouveaux articles disponibles, cliquez pour rafraîchir la page.
À partir d’avant-hier4sysops

Cloudflare launches self-managed OAuth to simplify delegated API access

Par : IT News
24 juin 2026 à 18:26
Cloudflare launches self-managed OAuth to simplify delegated API access
Cloudflare has officially launched self-managed OAuth for all customers, moving away from a model that previously required manual onboarding for third-party integrations. This update allows developers to build SaaS integrations and internal platforms using standard OAuth flows instead of relying on static API tokens. By adopting this delegated access model, users gain clearer consent screens and the ability to revoke application permissions directly from their dashboard.

Source

LastPass data breach exposes customer data

Par : IT News
23 juin 2026 à 17:03
LastPass data breach exposes customer data
A supply chain attack targeting the market intelligence platform Klue has resulted in the theft of OAuth tokens used by several high-profile organizations. The Icarus extortion group gained access to Klue's infrastructure by exploiting a dormant legacy credential for a prototype integration service. Once inside, the threat actors exfiltrated OAuth tokens that allowed them to query connected third-party environments, specifically targeting Salesforce CRM data.

Source

❌
❌