all InfoSec news
Google OAuth secrets exposed as account-hijacking MultiLogin vulnerability discovered
Jan. 4, 2024, 2:39 p.m. | Alfonso Maruccia
TechSpot www.techspot.com
A malware developer was recently able to discover one of Google's OAuth secrets, a previously unknown feature named "MultiLogin" that is responsible for synchronizing Google accounts across different services. MultiLogin accepts a vector of account ID and auth-login tokens, using such data for managing simultaneous sessions or seamlessly switching between...
Read Entire Article
account accounts auth data developer discover exposed feature google google accounts hijacking login malware malware developer oauth responsible secrets services sessions tokens vulnerability
More from www.techspot.com / TechSpot
Ubuntu 24.04 LTS lands with Gnome 46, Linux 6.8, and Raspberry Pi 5 support
2 days, 15 hours ago |
www.techspot.com
FTC votes to ban most noncompete agreements nationwide
4 days, 11 hours ago |
www.techspot.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Security Officer Hospital Laguna Beach
@ Allied Universal | Laguna Beach, CA, United States
Sr. Cloud DevSecOps Engineer
@ Oracle | NOIDA, UTTAR PRADESH, India
Cloud Operations Security Engineer
@ Elekta | Crawley - Cornerstone
Cybersecurity – Senior Information System Security Manager (ISSM)
@ Boeing | USA - Seal Beach, CA
Engineering -- Tech Risk -- Security Architecture -- VP -- Dallas
@ Goldman Sachs | Dallas, Texas, United States