Token theft steals an already-issued token from storage or memory and replays it later. Consent phishing tricks a user into approving a malicious app, which causes the identity provider to issue valid tokens directly to the attacker’s application.
Why This Matters for Security Teams
token theft and consent phishing both end in unauthorised access, but they are not the same attack path, and that difference changes detection, containment, and prevention. Token theft usually means a bearer credential has already been issued and is later replayed from memory, logs, endpoints, or chat systems. Consent phishing exploits the identity platform itself by persuading a user to approve a malicious app, which then receives legitimate tokens. That distinction matters because one problem is mostly exposure and replay, while the other is delegated trust abuse.
In practice, many teams misclassify consent grants as routine OAuth activity until data movement, mailbox access, or API abuse has already begun, rather than through intentional identity review. NIST Cybersecurity Framework 2.0 treats identity and access as an ongoing protection function, not a one-time setup, which is why approval review and token hygiene both matter. NHIMG research shows how often tokens are exposed in normal business tooling, including the Salesloft OAuth token breach, where stolen OAuth material was used to reach downstream data.
For defenders, the real risk is assuming every token problem is solved by revocation alone. Consent phishing can create fresh, valid access that never had to be stolen first.
How It Works in Practice
Token theft starts with credential exposure. Attackers look for tokens in browser storage, process memory, CI logs, paste bins, ticketing systems, or source control, then replay them before expiry or before revocation catches up. Because bearer token are treated as proof of possession, whoever has the token can often use it until the identity provider or resource server rejects it. That is why the Guide to the Secret Sprawl Challenge is relevant here: secret spread creates the conditions for token theft long before an intrusion is visible.
Consent phishing works differently. The attacker registers or compromises an app, then sends a link that asks the user to grant permissions such as mailbox read, file access, or offline refresh token access. Once the user approves, the identity provider issues valid tokens directly to that app. At that point, the attacker does not need to steal anything from an endpoint. The malicious application is now a trusted OAuth client, which is why reviews of app consent and delegated permissions must sit beside token rotation and revocation workflows. The practical control set should include user consent restrictions, admin approval for high-risk scopes, short-lived tokens, conditional access, and alerts on unusual app grants. NIST Cybersecurity Framework 2.0 and the NIST Cybersecurity Framework 2.0 both reinforce continuous monitoring of identity events, not just perimeter logs.
- Use token detection and rapid revocation for exposed bearer credentials.
- Restrict OAuth app consent to approved publishers or administrator workflows.
- Review high-risk scopes, especially offline access and broad mailbox or drive permissions.
- Correlate consent events with impossible travel, new client IDs, and abnormal API activity.
These controls tend to break down in environments with delegated admin sprawl and overly broad legacy app permissions because the platform keeps issuing legitimate access after the initial compromise.
Common Variations and Edge Cases
Tighter consent controls often increase operational overhead, requiring organisations to balance user productivity against stronger approval gates. That tradeoff is real, especially where business units rely on SaaS integrations, automation tools, and service accounts that already blur the line between human and non-human access. There is no universal standard for consent governance yet, but current guidance suggests treating high-risk app grants as privileged events rather than ordinary self-service onboarding.
Edge cases matter. Some incidents begin as token theft and then become consent abuse when attackers use the stolen session to approve a rogue app. Others involve refresh tokens, which can outlive the original session and behave more like persistent access than a short-lived token. Browser-based token storage, mobile device tokens, and sync tools also complicate response because the same secret may exist in multiple places. NHIMG coverage of the Internet Archive breach and the JetBrains GitHub plugin token exposure shows how quickly exposed tokens become operational access when identity hygiene is weak.
For practitioners, the rule of thumb is simple: stolen tokens point to storage and session exposure, while consent phishing points to trust and approval abuse. Mature programs need both revocation discipline and consent governance, because either control alone leaves a visible gap.
Standards & Framework Alignment
This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.
OWASP Non-Human Identity Top 10 address the attack and risk surface, while NIST CSF 2.0 and NIST AI RMF set the governance and control requirements practitioners need to meet.
| Framework | Control / Reference | Relevance |
|---|---|---|
| OWASP Non-Human Identity Top 10 | NHI-03 | Token theft and exposed secrets are core NHI credential risks. |
| NIST CSF 2.0 | PR.AC-4 | Consent phishing abuses identity and access permissions. |
| NIST AI RMF | Autonomous access decisions require ongoing governance and oversight. |
Track identity-risk decisions continuously and tie them to accountable owners and monitoring.
Related resources from NHI Mgmt Group
- What is the difference between prompt injection risk and identity abuse in agents?
- What is the difference between SAST and DAST for security teams?
- What is the difference between token theft and privilege escalation in managed identity attacks?
- What is the difference between credential phishing and consent phishing?
Deepen Your Knowledge
Reviewed and updated by the NHIMG editorial team on May 28, 2026.
NHI Mgmt Group — the #1 independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org
