#token-theft

[ follow ]
#npm #supply-chain-security #tea-protocol #saas-security #oauth #api-keys
Information security
fromInfoWorld
1 week ago

Worm flooding npm registry with token stealers still isn't under control

A massive coordinated campaign has created over 153,000 malicious npm packages that steal Tea Protocol tokens and threaten open-source supply chain trust.
Information security
fromThe Hacker News
1 month ago

SaaS Breaches Start with Tokens - What Security Teams Must Watch

Stolen OAuth and API tokens enable attackers to bypass MFA and access SaaS systems, making token hygiene and rotation critical to prevent breaches.
[ Load more ]