3 matches found
Microsoft to Block Unauthorized Scripts in Entra ID Logins with 2026 CSP Update
Microsoft has announced plans to improve the security of Entra ID authentication by blocking unauthorized script injection attacks starting a year from now. The update to its Content Security Policy CSP aims to enhance the Entra ID sign-in experience at "login.microsoftonline.com" by only letting...
Malicious code in browser-sign-in (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c6d411988c71278a3b1cc021357c555ec43f75d6834289977b60fb08c1ce8d19 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-1068 Malicious code in browser-sign-in (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c6d411988c71278a3b1cc021357c555ec43f75d6834289977b60fb08c1ce8d19 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...