#oauth-credential-theft

[ follow ]
#npm #n8n #supply-chain #salesloft-drift-breach #salesforce-data-exfiltration #supply-chain-attacks
Information security
fromThe Hacker News
2 weeks ago

n8n Supply Chain Attack Abuses Community Nodes to Steal OAuth Tokens

Malicious npm packages posing as n8n integrations stole OAuth tokens by prompting account links and exfiltrating credentials to attacker-controlled servers.
fromTheregister
4 months ago

Stolen OAuth tokens expose Palo Alto customer data

Marc Benoit, chief information security officer at PAN, confirmed in a note to clients - seen by The Register - that it was informed on August 25 that the "compromise of a third-party application, Salesloft's Drift, resulted in the access and exfiltration of data stored in our Salesforce environment." It immediately disconnected the third-party application from its Salesforce CRM, he said.
Information security
[ Load more ]