Oauth - 1

2026 (2)

March (2)

github: Credential revocation API now supports GitHub OAuth and GitHub app credentials

GitHub

2026-03-26

GitHub extended the Credential revocation API to support GitHub OAuth and GitHub App credentials. The API can now be used to programmatically revoke exposed credentials found in repositories or elsewhere.

security: OAuth redirection abuse enables phishing and malware delivery

Microsoft Security Blog

2026-03-02

Microsoft reports attackers abusing OAuth redirect behavior to move users from legitimate sign-in pages to attacker-controlled sites, enabling phishing and malware delivery via trusted authentication flows.