OAuth stories
Attackers are now moving fast enough that patching delays, standing privilege and inherited trust leave organisations exposed within minutes.
Enterprises can now buy and register third-party AI agents through Google Cloud Marketplace for use inside Gemini Enterprise.
Enterprise AI deployments may be exposing sensitive data through overlooked connector permissions, according to a new governance framework from Vivek Kumar.
Enterprise security teams are being pushed to track what AI agents can access and do across apps, identities and workflows before data is exposed.
The expansion gives IT teams central control over AI agent permissions, reducing risky static keys and easing reviews as workplace use widens.
Trusted third-party access has let attackers quietly pull large volumes of Salesforce records from enterprise systems via a Klue integration.
More than half of Vercel deployments are now triggered by coding agents, as monthly AI token traffic has jumped tenfold.
The tie-up adds tighter access checks as firms deploy AI agents and browser tools more widely, amid rising identity attacks.
Security teams may gain relief from manual identity investigations as Offroad targets risks from human, machine and AI access with USD $7 million.
Customers can now govern AI agents across mixed systems as Okta adds Bedrock support and lets firms keep existing identity providers.
Businesses struggling with fragmented records can now give AI agents a shared data layer, as Airbyte adds search and write tools for workflows.
The update lets app users cap, approve and audit AI-driven payments while keeping control of their funds and spending limits.
Small firms and solo founders now get guided Google Ads setup and optimisation, easing a marketing hurdle for businesses with limited staff.
Longer outages at developer tools now threaten release schedules and productivity, with GitProtect estimating more than USD $740,000 in losses.
Enterprises face growing breach and compliance risks as autonomous software bypasses static access controls and acts across systems without oversight.
AI agents are set to erode ad-funded web traffic, forcing businesses to pivot from screen-based funnels to metered API revenue.
New guidance aims to help firms curb data leakage and rogue actions as AI agents and models are embedded in daily operations.
Customers were urged to rotate secrets after unauthorised access to Vercel systems exposed a limited set of credentials via a third-party AI tool.
Businesses can now let AI agents update Salesforce records and run tasks through Airbyte's new OpenAI Marketplace listing.
A free account could have let attackers alter Zapier-maintained packages and hijack logged-in users' browser sessions, researchers said.