all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Account pre-hijacking attacks possible on many online services

Add to bookmarks
May 24, 2022, 1:51 p.m. | Zeljka Zorz

Help Net Security www.helpnetsecurity.com

Online accounts getting hijacked and misused is an everyday occurrence, but did you know that account pre-hijacking attacks are also possible? Inspired by previous research on preemptive account hijacking by way of single sign-on (SSO) technology, researchers Avinash Sudhodanan and Andrew Paverd wanted to see whether an action by an attacker performed before a victim creates an account may allow the former to gain access to it once the the victim has created/recovered the account. … More →


The post …

account account hijacking account protection attacks don't miss dropbox hijacking instagram linkedin mfa microsoft online services research services sso wordpress zoom

Visit resource

More from www.helpnetsecurity.com / Help Net Security

Ransomware in Q1 2024: Frequency, size of payments trending downwards, SMBs beware! 2 hours ago | www.helpnetsecurity.com
coveware cybercriminals don't miss extortion +20
LastPass users targeted by vishing attackers 4 hours ago | www.helpnetsecurity.com
attackers com cryptochameleon domain +21
Protobom: Open-source software supply chain tool 10 hours ago | www.helpnetsecurity.com
administrators amp bill born +28
The key pillars of domain security 10 hours ago | www.helpnetsecurity.com
assets auditing campaigns ciso +34
51% of enterprises experienced a breach despite large security stacks 11 hours ago | www.helpnetsecurity.com
attack attack surface breach ciso +24
New infosec products of the week: April 19, 2024 11 hours ago | www.helpnetsecurity.com
access april critical critical data +15
Gurucul federated search provides insights into data that is not centralized 1 day ago | www.helpnetsecurity.com
capabilities cloud console data +19
AuditBoard expands executive team to support the next phase of growth 1 day, 2 hours ago | www.helpnetsecurity.com
addition appointed auditboard award +25
Ivanti patches critical Avalanche flaw exploitable via a simple message (CVE-2024-29204) 1 day, 2 hours ago | www.helpnetsecurity.com
attacker avalanche aware critical +31

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Security Engineer, Incident Response

@ Databricks | Remote - Netherlands
View on infosec-jobs.com

Associate Vulnerability Engineer - Mid-Atlantic region (Part-Time)

@ GuidePoint Security LLC | Remote in VA, MD, PA, NC, DE, NJ, or DC
View on infosec-jobs.com

Data Security Architect

@ Accenture Federal Services | Washington, DC
View on infosec-jobs.com

Identity Security Administrator

@ SailPoint | Pune, India
View on infosec-jobs.com
View more jobs