ConsentFix debrief: Insights from the new OAuth phishing attack

ConsentFix is an OAuth phishing technique abusing browser-based authorization flows to hijack Microsoft accounts. Push ...

Following New CA/B Forum Vote, Businesses Must Prepare for Two Significant Certificate Lifecycle Reductions in March

On October 14(th) , 2025, the CA/B Forum, which establishes standards within the certificate industry, voted to reduce the lifetime of Code Signing Certificates from 39 months to 460 days. The changes ...
The Information

Anthropic and OpenAI’s Coding Tools Produce Websites with Security Flaws

Websites created through coding tools from OpenAI, Anthropic, Cursor, Replit and Devin have security flaws, new research ...