Summary
Microsoft has introduced new security upgrades for Defender for Cloud Apps to counter the sophisticated attacks by the ShinyHunters cybercrime group, who exploited OAuth trust in Salesforce to compromise SaaS integrations and exfiltrate data from hundreds of customer environments. The changes aim to improve detection, investigation, and governance of OAuth-connected applications.