A moderate-severity vulnerability (CVE-2025-32016) in Microsoft Identity Web (versions 3.2.0 to 3.8.1) may expose sensitive client secrets and certificate information in service logs under certain conditions. Microsoft advises updating to versions 3.8.2 or 9.0.0 to mitigate risks, while highlighting the importance of secure logging practices for protecting sensitive authentication credentials.

Claude, Cursor, and Codex Trigger Endpoint Security Rules Used to Catch Hackers
AI coding agents such as Claude Code, Cursor, and OpenAI Codex are increasingly appearing in enterprise environments, and new telemetry shows they are unintentionally triggering


