Learning from the Vercel breach: Shadow AI & OAuth sprawl

A single third-party OAuth integration can become a direct path into your environment. Push explains how the Vercel breach ...

American AI startup Poolside launches free, high-performing open model Laguna XS.2 for local agentic coding

By putting the weights of a highly capable, 33B-parameter agentic model in the hands of researchers and startups, Poolside is ...
About Amazon

AWS and OpenAI announce expanded partnership to bring frontier intelligence to the infrastructure you already trust

AWS and OpenAI are bringing the latest OpenAI models to Amazon Bedrock, launching Codex on Amazon Bedrock, and launching ...

Device codes are the new frontier for phishing as Barracuda detects 7 million attacks in four weeks

Device code phishing has advantages over traditional credential phishing in stealth, persistence and evasion New research from Barracuda provides step-by-step insight into how attackers exploit device ...

Why OpenClaw is Replacing Passive AI with Real-World Task Automation

Discover how OpenClaw goes beyond traditional AI by executing real-world tasks. Follow our 2026 guide to set up your no-code ...
heise online

Twenty 2.0: The open-source CRM follows up

With version 2.0.0, the open-source CRM Twenty receives a comprehensive update. The release focuses on AI integration, ...

No More Codes: Google is Making Android App Sign-Ups Instant with New 'Verified Email' Feature

Independent, expert Android News you can trust, since 2010. Publishing more Android than anyone else.
The Hacker News

Toxic Combinations: When Cross-App Permissions Stack into Risk

Toxic combinations form when AI agents, integrations, or OAuth grants bridge SaaS apps into trust relationships no single ...
Security Boulevard

Vercel Breach: How a Roblox Cheat Download Led to a $2M Data Heist Through AI Tool OAuth Abuse

Vercel breached after attacker compromised Context.ai, hijacked an employee's Google Workspace via OAuth, and accessed ...
TechCircle

'Agents will need identity': Pine Labs CTO on the missing layer in Agentic AI

As enterprises race to deploy autonomous AI agents, a growing concern has emerged around what these agents are permitted to ...
Dark Reading

Vercel Employee's AI Tool Access Led to Data Breach

Stolen OAuth tokens, which are at the root of these breaches, "are the new attack surface, the new lateral movement," a ...
Cybernews

Vercel hacked after fatal OAuth misstep: granting “Allow All” permissions

Vercel has been hacked and had some customer credentials compromised after an employee's single OAuth token, which had been ...