Tag
token-theft
Safeguard articles tagged "token-theft" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Incident Analysis
The Vercel Breach: A Forgotten OAuth Grant Became a SaaS Supply-Chain Pivot (May 2026)
An infostealer infection at AI startup Context.ai let attackers reuse a Vercel employee's months-old Google Workspace OAuth grant to bypass MFA and exfiltrate customer environment variables. Disclosed April 2026, the fallout deepened through May.
May 12, 202612 min read
Incident Analysis
Slack GitHub Repository Theft: Stolen Tokens and the Risks of Third-Party Integrations
In December 2022, Slack disclosed that stolen employee tokens were used to access private GitHub repositories. The breach highlighted the risks of token-based authentication in CI/CD pipelines.
Jan 4, 20236 min read
Incident Analysis
Azure AD Token Theft Campaigns: A 2022 Retrospective
Token theft is the quiet successor to credential phishing, and 2022 turned it into an industry. Here is what the year's Azure AD campaigns actually looked like.
Jul 14, 20227 min read