OAuth vulnerabilities on Booking.com could have resulted in account takeovers | allinfosecnews.com

March 2, 2023, 1 p.m. | Duncan Riley

Security – SiliconANGLE siliconangle.com

Security researchers at Salt Security Inc. today released new threat research that highlights critical security flaws found on the website of popular hotel booking service Booking Holdings Inc. The flaws were found in the way those who designed the Booking.com site implemented Open Authorization social-login functionality, potentially exposing any users logging into the site through […]

The post OAuth vulnerabilities on Booking.com could have resulted in account takeovers appeared first on SiliconANGLE.

account api authorization booking booking.com booking holdings critical cyber cyber2021 cybersecurity exposing flaws hacking hotel kayak logging login oauth popular research researchers salt salt labs salt security security security flaws security researchers service social takeovers the-latest threat threat research vulnerabilities website

More from siliconangle.com / Security – SiliconANGLE

Menlo Security inks cybersecurity partnership with Google Cloud 1 day, 12 hours ago | siliconangle.com

browser cloud companies customers +20

Microsoft rolls out passkey support for all consumer accounts 1 day, 15 hours ago | siliconangle.com

accounts consumer devices fido alliance +21

Splunk report finds generative AI both a problem and a solution for security teams 1 day, 17 hours ago | siliconangle.com

advanced ai artificial intelligence challenges +23

Verizon security expert shares insights on how SMBs can defend against rising security threats 1 day, 18 hours ago | siliconangle.com

attacks bob carver breaches browser security +37

1Password launches Extended Access Management to secure unmanaged apps and devices 1 day, 20 hours ago | siliconangle.com

1password 1password extended access management access access management +25

Edgio launches edge-enabled attack surface management to bolster continuous web application security 1 day, 20 hours ago | siliconangle.com

ai application application security assets +29

StrongDM raises $34M to enhance zero-trust privileged access management 1 day, 20 hours ago | siliconangle.com

access access management anchor capital aws +34

Palo Alto Networks launches Prisma SASE 3.0 for enhanced device security 1 day, 21 hours ago | siliconangle.com

alto artificial artificial intelligence cyber +22

Google launches 1B passkey authentications and new security updates 1 day, 21 hours ago | siliconangle.com

1password account account protection adoption +37

Principal Security Engineer

@ Elsevier | Home based-Georgia

View on infosec-jobs.com

Infrastructure Compliance Engineer

@ NVIDIA | US, CA, Santa Clara

View on infosec-jobs.com

Information Systems Security Engineer (ISSE) / Cybersecurity SME

@ Green Cell Consulting | Twentynine Palms, CA, United States

View on infosec-jobs.com

Sales Security Analyst

@ Everbridge | Bengaluru

View on infosec-jobs.com

Alternance – Analyste Threat Intelligence – Cybersécurité - Île-de-France

@ Sopra Steria | Courbevoie, France

View on infosec-jobs.com

Third Party Cyber Risk Analyst

@ Chubb | Philippines

View on infosec-jobs.com