Tag: Oauth | Kaspersky official blog

Attack on Google OAuth using abandoned domains

A vulnerability in Google OAuth allows attackers to access accounts of defunct organizations through abandoned domains.

Hijacking GitHub accounts using phishing emails

Phishing on GitHub through job offers to… developers

Developers’ accounts are being hijacked using fake job offers sent from a legitimate GitHub address.

Why using Google OAuth in work applications is unsafe

Google OAuth and phantom accounts

Google OAuth allows to create phantom Google accounts — uncontrollable by corporate Google Workspace administrators.

Keep Calm and Stay Vigilant, OpenID and OAuth are Vulnerable

OpenID and OAuth are protocols responsible for those “Login with Facebook” and “Authorize with Google” buttons you see on almost every site nowadays. Of course, there is a hack for that™, but you don’t need neither panic nor change your password. Read on for our simple action plan.

Privacy & Kids

Oauth

Attack on Google OAuth using abandoned domains

Phishing on GitHub through job offers to… developers

Google OAuth and phantom accounts

Keep Calm and Stay Vigilant, OpenID and OAuth are Vulnerable

Sign up to receive our headlines in your inbox

Home Solutions

Small Business Products

Medium Business Products

Enterprise Solutions

Securelist

Eugene Personal Blog

Encyclopedia