all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Google OAuth secrets exposed as account-hijacking MultiLogin vulnerability discovered

Add to bookmarks
Jan. 4, 2024, 2:39 p.m. | Alfonso Maruccia

TechSpot www.techspot.com


A malware developer was recently able to discover one of Google's OAuth secrets, a previously unknown feature named "MultiLogin" that is responsible for synchronizing Google accounts across different services. MultiLogin accepts a vector of account ID and auth-login tokens, using such data for managing simultaneous sessions or seamlessly switching between...

Read Entire Article

account accounts auth data developer discover exposed feature google google accounts hijacking login malware malware developer oauth responsible secrets services sessions tokens vulnerability

Visit resource

More from www.techspot.com / TechSpot

This genius tool ensures flawless thermal paste application every time 21 hours ago | www.techspot.com
application big cpu pass +6
Police arrest high school athletic director for deepfaking principal's voice 1 day, 14 hours ago | www.techspot.com
administration arrest arrested board +19
Nearly all Chinese keyboard apps have encryption flaws, exposing millions of users to keylogging 1 day, 23 hours ago | www.techspot.com
apps article chinese cloud +19
Cybercriminals are using developing nations as test beds for ransomware attacks 2 days ago | www.techspot.com
agency america argentina ars technica +21
Ubuntu 24.04 LTS lands with Gnome 46, Linux 6.8, and Raspberry Pi 5 support 2 days, 15 hours ago | www.techspot.com
app article center disk +15
US TikTok ban could begin next year as Biden signs law, but legal battle looms 3 days ago | www.techspot.com
app apple app stores ban +22
FTC votes to ban most noncompete agreements nationwide 4 days, 11 hours ago | www.techspot.com
article ban comments effect +5
GPT-4 can exploit zero-day security vulnerabilities all by itself, a new study finds 5 days, 17 hours ago | www.techspot.com
advanced can chatbot computer +14
All Cybertrucks recalled because acceleration pedals can become stuck 1 week, 1 day ago | www.techspot.com
article brake can department +6

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Officer Hospital Laguna Beach

@ Allied Universal | Laguna Beach, CA, United States
View on infosec-jobs.com

Sr. Cloud DevSecOps Engineer

@ Oracle | NOIDA, UTTAR PRADESH, India
View on infosec-jobs.com

Cloud Operations Security Engineer

@ Elekta | Crawley - Cornerstone
View on infosec-jobs.com

Cybersecurity – Senior Information System Security Manager (ISSM)

@ Boeing | USA - Seal Beach, CA
View on infosec-jobs.com

Engineering -- Tech Risk -- Security Architecture -- VP -- Dallas

@ Goldman Sachs | Dallas, Texas, United States
View on infosec-jobs.com
View more jobs