n8n Flaw Risks Multi-Issuer Hijacking
A critical identity-binding vulnerability in n8n's token exchange process allowed unauthorized account access across trusted issuers.
13 results for “identity”
A critical identity-binding vulnerability in n8n's token exchange process allowed unauthorized account access across trusted issuers.
Freshly emerged from stealth, Oak secures $60 million to tackle identity fragmentation across human, AI, and machine vectors.
New findings reveal that compromised credentials are now the primary catalyst for ransomware breaches, eclipsing software flaws.
A study of 85 browser-based wallets reveals systemic privacy flaws that allow for cross-site tracking and the de-anonymization of users.
Threat actors are weaponizing OAuth client ID spoofing to validate stolen credentials while remaining invisible to standard telemetry.
Microsoft details how threat actors bypassed traditional defenses to compromise Salesforce environments via OAuth and guest access.
A deep dive into the operational identity and recruitment tactics driving one of the fastest-growing ransomware-as-a-service groups.
A breach at Nelnet Servicing has compromised the personal information of millions, creating a prime target for future phishing.
Varonis Threat Labs launches an interactive capture-the-flag experience to teach security teams how to combat modern identity attacks.
A stealthy new attack technique is bypassing traditional security logs, allowing threat actors to compromise cloud-based infrastructure.
A new subscription-based phishing service leverages device code theft and AI to bypass traditional security defenses.
A flurry of 37 cybersecurity acquisitions in June 2026 underscores how major tech firms are rapidly integrating AI and identity governance.
A sophisticated new group named Helix leverages identity-based phishing and MFA abuse to infiltrate corporate SharePoint environments, exfiltrating sensitive data for extortion or sale.