Source: www.securityweek.com – Author: Ionut Arghire A vulnerability in Google’s OAuth implementation can be abused to take over the accounts of former employees of failed startups by purchasing their domains, according to a report from secrets scanning firm Truffle Security. The issue is relatively straightforward: when purchasing a failed startup’s domain, anyone can re-create old […]
La entrada Google OAuth Flaw Leads to Account Takeover When Domain Ownership Changes – Source: www.securityweek.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.
Leave a Reply