Christian Wenz explains why the Backends for Frontends (BFF) pattern is emerging as a more secure authentication model for single-page applications.

Managing an inbox with 124,000 unread emails may seem like an insurmountable task, but Eric Michaud demonstrates how AI-powered solutions can simplify the process. By using Google Antigravity and Open ...

Researchers from Microsoft Defender have uncovered phishing campaigns that misuse OAuth’s built-in redirection behavior to deliver malware and redirect victims to malicious websites. Importantly, the ...

Microsoft on Monday warned of phishing campaigns that employ phishing emails and OAuth URL redirection mechanisms to bypass conventional phishing defenses implemented in email and browsers. The ...

If you’re still relying on just a password to protect your online accounts, you’re gambling. Passwords get reused. They get leaked in data breaches. They get guessed. And once a criminal has your ...

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Dany Lepage discusses the architectural ...

What are Credential Based Attacks? A credential-based attack is a type of cyber-attack wherein an attacker attempts to steal and misuse user credentials, such as usernames, email addresses, and ...

Legacy authentication refers to older ways of logging in, such as POP3, IMAP, and old versions of Exchange ActiveSync. These methods are similar to a friend who still uses a flip phone; they can ...

Android devices are vulnerable to a new attack that can covertly steal two-factor authentication codes, location timelines, and other private data in less than 30 seconds. The new attack, named ...

A widespread data theft campaign has allowed hackers to breach sales automation platform Salesloft to steal OAuth and refresh tokens associated with the Drift artificial intelligence (AI) chat agent.