Stolen OAuth tokens, which are at the root of these breaches, "are the new attack surface, the new lateral movement," a researcher noted.

AI summaries can be wrong sometimes—always verify important details using the source link below.