all InfoSec news
Protection of API from abuse (signup and carding attacks)
June 1, 2023, 10:40 a.m. | /u/marcinguy
cybersecurity www.reddit.com
Mobile apps user same client_id (Oauth2).
Now I see many Bots signing up, adding credit card for checking them (carding)
I cannot throttle, limit them since the IP is always different also client_id for all mobile clients is the same.
What solutions would you propose to stop it?
If there is a way to identify each Mobile client uniquely I can throttle each for 1 request per second or something (to stop …
abuse api apps attacks backend bots card carding carding attacks clients credit credit card cybersecurity limit mobile mobile apps oauth2 protection signing solutions
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Check Team Members / Cyber Consultants / Pen Testers
@ Resillion | Birmingham, United Kingdom
Security Officer Field Training Officer- Full Time (Harrah's LV)
@ Caesars Entertainment | Las Vegas, NV, United States
Cybersecurity Subject Matter Expert (SME)
@ SMS Data Products Group, Inc. | Fort Belvoir, VA, United States
AWS Security Engineer
@ IntelliPro Group Inc. | Palo Alto, CA
Information Security Analyst
@ Freudenberg Group | Alajuela