SecurityWeek

Google Rolls Out Cookie Theft Protections in Chrome

Google’s Device Bound Session Credentials in Chrome protect against session cookie theft by binding authentication to the device.

Keycloak 26.6 brings zero-downtime updates and workflows

The open-source IAM system Keycloak 26.6 promotes five features to production status – including federated client ...

Google Chrome adds infostealer protection against session cookie theft

Google has rolled out Device Bound Session Credentials (DBSC) protection in Chrome 146 for Windows, designed to block ...

Google Brings New 2FA Theft Protection To Chrome For Windows Users

Windows users now get new Chrome browser protection against 2FA bypass attacks, Google has announced. Here’s what you need to ...
Microsoft

Intent redirection vulnerability in third-party SDK exposed millions of Android wallets to potential risk

A severe Android intent‑redirection vulnerability in a widely deployed SDK exposed sensitive user data across millions of ...

When attackers already have the keys, MFA is just another door to open

Stolen credentials turn authentication systems into the attack surface. Token shows how wearable biometric authentication ...