Threat Post

Session Hijacking Bug Exposed GitLab Users Private Tokens

GitLab, the popular web-based Git repository manager, fixed a vulnerability recently that could have opened its users up to session hijacking attacks. GitLab, the popular web-based Git repository ...
Dark Reading

'SessionShark' ToolKit Evades Microsoft Office 365 MFA

Threat actors are showcasing a service called "SessionShark 0365 2FA/MFA," which is a phishing-as-a-service (PhaaS) toolkit intended for fellow hackers. The creators of the toolkit are attempting to ...
Biometric Update

NIST warns token security remains a critical weakness in cloud, federal systems

The report focuses on the cryptographic objects that modern systems use to authenticate users, devices, and software services ...
Security Boulevard

Bearer Token vs JWT: Understanding the Relationship & Differences

Explore the relationship between Bearer Tokens and JWTs in Enterprise SSO and CIAM. Understand their differences, security aspects, and how they're used in authentication and authorization.
CoinDesk

Scroll's SCR Token Debuts at $212M Market Cap in Volatile Trading Session

Layer-2 network Scroll released its long-awaited native governance token on Tuesday, putting the project's initial valuation just over $200 million. Traders priced SCR at around $1.10, or a $212 ...