September 3, 2025 – Securitydive

Palo Alto Networks, Zscaler, Cloudflare hit by the latest data breach

When three prominent vendors, Palo Alto Networks, ZScaler, and Cloudflare, announced on Tuesday that they were hit by a cyber attack, it was a stark reminder that today’s interconnected enterprise environment means that one vendor’s security hole can hurt users globally. Palo Alto said, “this supply chain attack impacted hundreds of organizations, including Palo Alto Networks”…

Critical Flaw in Azure AD Lets Attackers Steal Credentials

admin5 days ago03 mins

A recent cybersecurity assessment by Resecurity’s HUNTER Team uncovered a high-severity leak when Azure Active Directory (Azure AD) application credentials—specifically the ClientId and ClientSecret—were exposed in a publicly accessible appsettings.json file. This critical misconfiguration effectively hands attackers the digital keys to the cloud environment, enabling unauthorized token requests against Microsoft’s OAuth 2.0 endpoints and giving adversaries a direct path…