English
English Indonesia Türkçe Deutsch Español Português Pусский Français Italiano Nederlands Polski العربية ไทย Tiếng Việt 繁體中文 简体中文 日本語 한국어

#oauthabuse search results

GuardzCyber's profile picture. The security controls MSPs need, unified in an AI-native platform, with 24/7 MDR to replace siloed tools.
Guardz
 @GuardzCyber
Aug 8

🔓 OAuth Consent: Red Team’s Backdoor Into Azure This is how a cloud tenant falls, with barely a ripple. A pristine “Consent to application” event, quietly stamped as “Success.” #AzureAD #RedTeam #OAuthAbuse #Backdoor #PrivilegeEscalation #CloudOffense

GuardzCyber's tweet image. 🔓 OAuth Consent: Red Team’s Backdoor Into Azure This is how a cloud tenant falls, with barely a ripple. A pristine “Consent to application” event, quietly stamped as “Success.” #AzureAD #RedTeam #OAuthAbuse #Backdoor #PrivilegeEscalation #CloudOffense
0
1
4
1
348
securitydailyr's profile picture. Everything you need to know about data security, ransomware, data storage, backup & disaster recovery
Daily Security Review
 @securitydailyr
Oct 7

⚠️ Attackers abused stolen OAuth tokens from Salesloft’s Drift integration to tap into Salesforce orgs — pulling AWS keys, passwords, Snowflake tokens & more. Read more: dailysecurityreview.com/cyber-security… #OAuthAbuse #CloudSecurity #SaaSAttack #InfoSec

securitydailyr's tweet image. ⚠️ Attackers abused stolen OAuth tokens from Salesloft’s Drift integration to tap into Salesforce orgs — pulling AWS keys, passwords, Snowflake tokens & more. Read more: dailysecurityreview.com/cyber-security… #OAuthAbuse #CloudSecurity #SaaSAttack #InfoSec
0
0
0
0
81
TweetThreatNews's profile picture. 🔍 ThreatResearch 📰 CybersecurityNews 🖥️ RansomMonitor 📂 Cyber Attack 📂 Data Breach 🎥 Youtube
Cybersecurity News Everyday
 @TweetThreatNews
Oct 4

Scattered Lapsus$ Hunters, an alliance of Scattered Spider, LAPSUS$, and ShinyHunters, hit 91 firms including Adidas, Cartier, Google, and Louis Vuitton via social engineering and OAuth abuse in 2025. #DataTheft #OAuthAbuse #USA ift.tt/GkAaKy8

TweetThreatNews's tweet card. Scattered Lapsus$ Hunters — an alliance of Scattered Spider, LAPSUS$, and ShinyHunters — carried out coordinated social‑engineering intrusions into Salesforce environments of numerous major companies...
Dark Web Profile: Scattered Lapsus$ Hunters
Source: hendryadrian.com
0
0
0
0
273
Eth1calHackrZ's profile picture. Someone trying to come to his senses. #CyberSecurity #Software #NewWorldOrder #SEO
Furkan D.
 @Eth1calHackrZ
Feb 9

4/8 Once inside, attackers modify mailbox rules to cover their tracks, steal sensitive data, and register new OAuth applications for persistent access. The education sector has been hit the hardest due to the weak security of student accounts. 📬🎓 #DataTheft #OAuthAbuse

0
0
0
0
9
doughsec's profile picture. IR Leader @Mandiant. Hacking things and responding to things being hacked. Opinions my own
Doug Bienstock
 @doughsec
Jun 11, 2020

Happy to see @azuread @office365 taking some steps to make application information more transparent at consent time. Specifying an application is not an official app and is unverified is a great step to reducing #oauthabuse #dfir #o365 #office365

doughsec's tweet image. Happy to see @azuread @office365 taking some steps to make application information more transparent at consent time. Specifying an application is not an official app and is unverified is a great step to reducing #oauthabuse #dfir #o365 #office365
0
1
7
0
0
VeriTechConsult's profile picture.
veritech_consulting
 @VeriTechConsult
Jul 22

Persistent threats are gaining stealthy access through stolen OAuth tokens—bypassing traditional security controls. Veritech outlines mitigation strategies to safeguard cloud assets: 🔗 veritech.consulting/june-2025-cybe… #CloudSecurity #ZeroTrust #OAuthAbuse #APTDefense

0
0
0
0
0
okoeroo's profile picture. High-performance security, Concern CISO MinVWS, Kobayashi Maru, #OpCyberpaint, Daddy^2, Husband, Hacker, Creative.
Oscar Koeroo
 @okoeroo
Aug 18, 2010

@SecBarbie you also fell for the twifficiency I see? #OAuthabuse

0
0
0
0
0
01ra66it's profile picture. Cybersecurity hobbyist. Speaker at Black Hat Asia, BSides Tokyo, BSides LV, Black Hat USA. Next: SecTor. CISSP/SSCP/CSAP.
Mr.Rabbit
 @01ra66it
Aug 27

攻撃者が不正入手済みOAuthトークンを使い、Salesforce API経由で法人データへアクセス。通常認証不要で認証ログを回避し、スムーズにデータ窃取を実現。#OAuthAbuse #SalesforceAttack gbhackers.com/hackers-abuse-…

01ra66it's tweet card. Google Threat Intelligence Group (GTIG) has issued an advisory concerning a broad data theft operation targeting corporate Salesforce instances via the Drift integration.
Hackers Abuse Compromised OAuth Tokens to Access and Steal Salesforce Corporate Data
Source: gbhackers.com
0
0
0
0
383
Morledge's profile picture. MD of @copperbayuk - Digital Agency and @eduTripsUK - a Trip Management Platform for Education. Love everything digital transformation and running 🏃‍♂️
Chris Morledge
 @Morledge
Jul 7, 2009

Thinking about it, I took @fun140 quiz weeks ago, how are they able to force my account to follow them so long after??? #oAuthAbuse

0
0
0
0
0
doughsec's profile picture. IR Leader @Mandiant. Hacking things and responding to things being hacked. Opinions my own
Doug Bienstock
 @doughsec
Oct 8, 2018

1/4 @Google taking some important steps to safeguard *consumer accounts* and prevent #OauthAbuse. Importantly these new protections do not cover Enterprise (G Suite) environments - arguably the accounts that are most at risk blog.google/technology/saf…

1
4
9
0
0
securitydailyr's profile picture. Everything you need to know about data security, ransomware, data storage, backup & disaster recovery
Daily Security Review
 @securitydailyr
Oct 7

⚠️ Attackers abused stolen OAuth tokens from Salesloft’s Drift integration to tap into Salesforce orgs — pulling AWS keys, passwords, Snowflake tokens & more. Read more: dailysecurityreview.com/cyber-security… #OAuthAbuse #CloudSecurity #SaaSAttack #InfoSec

securitydailyr's tweet image. ⚠️ Attackers abused stolen OAuth tokens from Salesloft’s Drift integration to tap into Salesforce orgs — pulling AWS keys, passwords, Snowflake tokens & more. Read more: dailysecurityreview.com/cyber-security… #OAuthAbuse #CloudSecurity #SaaSAttack #InfoSec
0
0
0
0
81
TweetThreatNews's profile picture. 🔍 ThreatResearch 📰 CybersecurityNews 🖥️ RansomMonitor 📂 Cyber Attack 📂 Data Breach 🎥 Youtube
Cybersecurity News Everyday
 @TweetThreatNews
Oct 4

Scattered Lapsus$ Hunters, an alliance of Scattered Spider, LAPSUS$, and ShinyHunters, hit 91 firms including Adidas, Cartier, Google, and Louis Vuitton via social engineering and OAuth abuse in 2025. #DataTheft #OAuthAbuse #USA ift.tt/GkAaKy8

TweetThreatNews's tweet card. Scattered Lapsus$ Hunters — an alliance of Scattered Spider, LAPSUS$, and ShinyHunters — carried out coordinated social‑engineering intrusions into Salesforce environments of numerous major companies...
Dark Web Profile: Scattered Lapsus$ Hunters
Source: hendryadrian.com
0
0
0
0
273
01ra66it's profile picture. Cybersecurity hobbyist. Speaker at Black Hat Asia, BSides Tokyo, BSides LV, Black Hat USA. Next: SecTor. CISSP/SSCP/CSAP.
Mr.Rabbit
 @01ra66it
Aug 27

攻撃者が不正入手済みOAuthトークンを使い、Salesforce API経由で法人データへアクセス。通常認証不要で認証ログを回避し、スムーズにデータ窃取を実現。#OAuthAbuse #SalesforceAttack gbhackers.com/hackers-abuse-…

01ra66it's tweet card. Google Threat Intelligence Group (GTIG) has issued an advisory concerning a broad data theft operation targeting corporate Salesforce instances via the Drift integration.
Hackers Abuse Compromised OAuth Tokens to Access and Steal Salesforce Corporate Data
Source: gbhackers.com
0
0
0
0
383
GuardzCyber's profile picture. The security controls MSPs need, unified in an AI-native platform, with 24/7 MDR to replace siloed tools.
Guardz
 @GuardzCyber
Aug 8

🔓 OAuth Consent: Red Team’s Backdoor Into Azure This is how a cloud tenant falls, with barely a ripple. A pristine “Consent to application” event, quietly stamped as “Success.” #AzureAD #RedTeam #OAuthAbuse #Backdoor #PrivilegeEscalation #CloudOffense

GuardzCyber's tweet image. 🔓 OAuth Consent: Red Team’s Backdoor Into Azure This is how a cloud tenant falls, with barely a ripple. A pristine “Consent to application” event, quietly stamped as “Success.” #AzureAD #RedTeam #OAuthAbuse #Backdoor #PrivilegeEscalation #CloudOffense
0
1
4
1
348
Eth1calHackrZ's profile picture. Someone trying to come to his senses. #CyberSecurity #Software #NewWorldOrder #SEO
Furkan D.
 @Eth1calHackrZ
Feb 9

4/8 Once inside, attackers modify mailbox rules to cover their tracks, steal sensitive data, and register new OAuth applications for persistent access. The education sector has been hit the hardest due to the weak security of student accounts. 📬🎓 #DataTheft #OAuthAbuse

0
0
0
0
9
doughsec's profile picture. IR Leader @Mandiant. Hacking things and responding to things being hacked. Opinions my own
Doug Bienstock
 @doughsec
Jun 11, 2020

Happy to see @azuread @office365 taking some steps to make application information more transparent at consent time. Specifying an application is not an official app and is unverified is a great step to reducing #oauthabuse #dfir #o365 #office365

doughsec's tweet image. Happy to see @azuread @office365 taking some steps to make application information more transparent at consent time. Specifying an application is not an official app and is unverified is a great step to reducing #oauthabuse #dfir #o365 #office365
0
1
7
0
0
doughsec's profile picture. IR Leader @Mandiant. Hacking things and responding to things being hacked. Opinions my own
Doug Bienstock
 @doughsec
Oct 8, 2018

1/4 @Google taking some important steps to safeguard *consumer accounts* and prevent #OauthAbuse. Importantly these new protections do not cover Enterprise (G Suite) environments - arguably the accounts that are most at risk blog.google/technology/saf…

1
4
9
0
0
okoeroo's profile picture. High-performance security, Concern CISO MinVWS, Kobayashi Maru, #OpCyberpaint, Daddy^2, Husband, Hacker, Creative.
Oscar Koeroo
 @okoeroo
Aug 18, 2010

@SecBarbie you also fell for the twifficiency I see? #OAuthabuse

0
0
0
0
0
Morledge's profile picture. MD of @copperbayuk - Digital Agency and @eduTripsUK - a Trip Management Platform for Education. Love everything digital transformation and running 🏃‍♂️
Chris Morledge
 @Morledge
Jul 7, 2009

Thinking about it, I took @fun140 quiz weeks ago, how are they able to force my account to follow them so long after??? #oAuthAbuse

0
0
0
0
0
No results for "#oauthabuse"
securitydailyr's profile picture. Everything you need to know about data security, ransomware, data storage, backup & disaster recovery
Daily Security Review
 @securitydailyr
Oct 7

⚠️ Attackers abused stolen OAuth tokens from Salesloft’s Drift integration to tap into Salesforce orgs — pulling AWS keys, passwords, Snowflake tokens & more. Read more: dailysecurityreview.com/cyber-security… #OAuthAbuse #CloudSecurity #SaaSAttack #InfoSec

securitydailyr's tweet image. ⚠️ Attackers abused stolen OAuth tokens from Salesloft’s Drift integration to tap into Salesforce orgs — pulling AWS keys, passwords, Snowflake tokens & more. Read more: dailysecurityreview.com/cyber-security… #OAuthAbuse #CloudSecurity #SaaSAttack #InfoSec
0
0
0
0
81
GuardzCyber's profile picture. The security controls MSPs need, unified in an AI-native platform, with 24/7 MDR to replace siloed tools.
Guardz
 @GuardzCyber
Aug 8

🔓 OAuth Consent: Red Team’s Backdoor Into Azure This is how a cloud tenant falls, with barely a ripple. A pristine “Consent to application” event, quietly stamped as “Success.” #AzureAD #RedTeam #OAuthAbuse #Backdoor #PrivilegeEscalation #CloudOffense

GuardzCyber's tweet image. 🔓 OAuth Consent: Red Team’s Backdoor Into Azure This is how a cloud tenant falls, with barely a ripple. A pristine “Consent to application” event, quietly stamped as “Success.” #AzureAD #RedTeam #OAuthAbuse #Backdoor #PrivilegeEscalation #CloudOffense
0
1
4
1
348
doughsec's profile picture. IR Leader @Mandiant. Hacking things and responding to things being hacked. Opinions my own
Doug Bienstock
 @doughsec
Jun 11, 2020

Happy to see @azuread @office365 taking some steps to make application information more transparent at consent time. Specifying an application is not an official app and is unverified is a great step to reducing #oauthabuse #dfir #o365 #office365

doughsec's tweet image. Happy to see @azuread @office365 taking some steps to make application information more transparent at consent time. Specifying an application is not an official app and is unverified is a great step to reducing #oauthabuse #dfir #o365 #office365
0
1
7
0
0

Something went wrong.


Something went wrong.


United States Trends