Tag: oauth

Active Android Exploit, Government-Targeted Campaigns, and OAuth Abuse Highlight March Threat Landscape

Google disclosed active exploitation of a Qualcomm Android vulnerability while Microsoft warned of OAuth redirect campaigns targeting government entities. Meanwhile, SloppyLemming APT actors launched dual malware chains against Pakistan and Bangladesh governments.

Mar 3, 2026The Hacker News, Ars Technica Security, SANS ISC, MSRC Security Updates

androidoauthgovernment-targeting

🇺🇸Google🇺🇸Oracle Data Cloud🇺🇸Apple

mediumData Breaches & Incidents

Weekly Roundup: Ad Cloaking Platform Exposed, OAuth Risks, and SOC Efficiency Insights

Security researchers revealed multiple active threat campaigns this week, including a sophisticated ad cloaking platform that bypasses Google's security measures and OAuth consent mechanisms that can grant persistent email access. Meanwhile, new research confirms that the vast majority of discovered vulnerabilities never see real-world exploitation.

Feb 27, 2026Hackread

phishingoauthvulnerability-management

🇺🇸Google

mediumCloud Security

Wiz Research Develops LLM-Based Detection for Malicious Azure OAuth Applications

Wiz Research demonstrates automated detection of malicious Azure OAuth apps and consent phishing campaigns using large language models to identify suspicious application patterns.

Feb 18, 2026Wiz Blog

azureoauthconsent-phishing