all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hackers Abusing OAuth Token to Take Over Millions of Accounts

Add to bookmarks
Oct. 30, 2023, 12:15 p.m. | Eswar

GBHackers On Security gbhackers.com

A new OAuth vulnerability has been discovered in three of the major extensions such as Grammarly, Vidio, and Bukalapak. These applications use the OAuth protocol for their authentication, which is vulnerable to an authentication token-stealing attack. OAuth is an authentication protocol that was introduced in 2006 and acts as a passwordless signing-in for many applications […]


The post Hackers Abusing OAuth Token to Take Over Millions of Accounts appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security …

abusing accounts applications attack authentication authentication token bukalapak computer security extensions grammarly hackers hacks major oauth protocol stealing token vidio vulnerability vulnerable

Visit resource

More from gbhackers.com / GBHackers On Security

LayerX Security Raises $24M for its Browser Security Platform, Enabling Employees to Work Securely From … 20 hours ago | gbhackers.com
browser browser security capital cyber security +24
GoldDigger Malware Using Deep Fake AI Photos To Hijack Bank Accounts 20 hours ago | gbhackers.com
access accounts artificial intelligence bank +30
Cuttlefish 0-click Malware Hijacks Routers & Captures Data 20 hours ago | gbhackers.com
0-click april campaign click +19
ArubaOS Critical Vulnerability Let Attackers Execute Remote Code 20 hours ago | gbhackers.com
aruba arubaos attackers buffer +26
VNC Is The Hacker’s New Remote Desktop Tool For Cyber Attacks 20 hours ago | gbhackers.com
access attacks challenges credentials +32
Hackers Claiming Breach of UAE Government Servers 21 hours ago | gbhackers.com
analysis announcement any.run breach +20
Russian Hackers Actively Attacking Small-scale Infrastructure Sectors 1 day ago | gbhackers.com
agency agriculture america attacks +35
Threat Actors Attacking MS-SQL Servers to Deploy Ransomware 1 day, 2 hours ago | gbhackers.com
attackers attacks campaign coinminer +26
REvil Ransomware Affiliate Sentenced for 13 Years in Prison 1 day, 4 hours ago | gbhackers.com
affiliate attacks cyber cyber security +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

SITEC- Systems Security Administrator- Camp HM Smith

@ Peraton | Camp H.M. Smith, HI, United States
View on infosec-jobs.com

Cyberspace Intelligence Analyst

@ Peraton | Fort Meade, MD, United States
View on infosec-jobs.com

General Manager, Cybersecurity, Google Public Sector

@ Google | Virginia, USA; United States
View on infosec-jobs.com

Cyber Security Advisor

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com

Engineering Team Manager – Security Controls

@ H&M Group | Stockholm, Sweden
View on infosec-jobs.com
View more jobs