Cloudflare is making its OAuth ecosystem accessible to all customers. Companies can now create their own OAuth applications.

LastPass confirms Salesforce data exposure after Klue OAuth token theft in supply chain attack linked to Icarus group; ...

Wordfence has blocked 17M+ exploit attempts targeting a Gravity SMTP bug that leaks API keys, OAuth tokens, and full system reports without authentication.

Gravity SMTP WordPress vulnerability CVE-2026-4020 has drawn 17 million automated exploit attempts since May 2026, draining ...

Cloudflare ended years of partner-only restrictions on Wednesday, opening self-managed OAuth 2.0 to every developer on its platform. The move eliminates the manual onboarding process that previously ...

The OAuth keys and secrets that official Twitter applications use to access users’ Twitter accounts have been leaked in a post to Github this morning. The OAuth keys and secrets that official Twitter ...

LastPass announced that hackers accessed customer data from its Salesforce environment after stealing the company's OAuth ...

Attackers are exploiting CVE-2026-4020 in Gravity SMTP to leak API keys, OAuth tokens, and system data from WordPress sites.

HTTP Got TLS. APIs Got OAuth. MCP Got Nothing. Permit.io Launches the Gateway to Fix That. AI agents are calling enterprise tools in production today with no fine-grained authorization, no delegation ...