Related Articles
Rapid response
OAuth hijacked: How a third-party breach hit Vercel
A compromised third-party app gave attackers OAuth access to Vercel. Here's what Expel found hunting across customer environments—and what to do now.
Threat intel
Anthropic Mythos didn’t break your security. It found what was already broken.
Anthropic Mythos didn't create new vulnerabilities. It just made them cheaper to find. Here's what defenders need to know.
Threat intel
Revisiting sound guidance: Countering the heightened threat of device code phishing
Device code authentication phishing bypasses MFA by exploiting a legitimate Microsoft feature. Here's how the attack works and how to stop it.
Threat intel
InstallFix: Not the application you were looking for
InstallFix is a new watering hole attack we're seeing, and it leverages Claude Code as the lure. Here's what you need to know.