Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...

OAuth phishers make ‘check where the link points’ advice ineffective

Microsoft has identified a phishing campaign using malformed links to legitimate OAuth services to redirect to malware ...
InfoWorld

Why MCP matters – and how to secure it

Model Context Protocol makes it far easier to integrate LLMs and your APIs. Let’s walk through how MCP clients and servers communicate, securely. Every new protocol introduces its own complexities.

Microsoft: Hackers abuse OAuth error flows to spread malware

Hackers are abusing the legitimate OAuth redirection mechanism to bypass phishing protections in email and browsers to take ...
InfoWorld

MCP C# SDK 1.0 arrives with improved authorization server discovery

Milestone release of Microsoft’s C# SDK for the Model Context Protocol brings full support for the 2025-11-25 version of the MCP Specification.
Dark Reading

Moving Beyond 2-Factor Authentication With ‘Context’

What’s the best way to protect your proprietary business secrets or financial data? One common recommendation is to implement two-factor authentication. As you undoubtedly know, two-factor ...