Bleeping Computer

Microsoft: OAuth apps used to automate BEC and cryptomining attacks

Microsoft warns that financially-motivated threat actors are using OAuth applications to automate BEC and phishing attacks, push spam, and deploy VMs for cryptomining. OAuth (short for Open ...
Hosted on MSN

SPFx and MSAL2 Power Seamless Healthcare Patient Transfers in 2026

As Microsoft doubles down on the SharePoint Framework (SPFx) with a 2026 roadmap focused on developer experience and extensibility, healthcare IT teams are pivoting to MSAL2 patterns to bridge the gap ...
Dark Reading

OAuth+XSS Attack Threatens Millions of Web Users With Account Takeover

Critical API security flaws have put millions of users at risk for account takeover, by using a modern authentication standard to resurrect a longtime vulnerability. The bugs were found in the Hotjar ...