Security News OneLogin Bug Let Attackers Use API Keys to Steal OIDC Secrets and Impersonate Apps TheHackerNews Daniel Bender 01 Oct 2025 OneLogin flaw CVE-2025-59363 exposed OIDC client secrets; patched in 2025.3.0 with no exploitation reported.
