A travel service, integrated into many airline service providers, carried a security flaw This could be abused to log into ...

This Google’s OAuth flaw that could allow attackers to inherit credentials from old accounts of former failed startups employees.

API vulnerability in airline-linked travel service exposed millions to account takeovers, booking fraud, and data theft ...

Millions of people can potentially have their data stolen because of a deficiency in Google’s “Sign in with Google” ...

OAuth is an open, secure data sharing standard designed to protect user data by providing access to that data, but keeping a user’s identity private. The standard was created in 2006 ...

As if losing your job when the startup you work for collapses isn’t bad enough, now a security researcher has found that ...

SquareX discloses a new attack technique that shows how malicious extensions can be used to completely hijack the browser, ...

While crucial, the existing OWASP Top 10 lists don't properly address the unique challenges NHIs present. Being the critical ...

and that businesses should make sure they're not leaving sensitive information behind Researchers propose additional safeguards Experts have found a vulnerability in Google’s OAuth “Sign in ...

“Identity attacks targeting browser extensions similar to this OAuth attack will only become more prevalent as employees rely on more browser-based tools to be productive at work. Similar ...

A security researcher purchased abandoned online domains belonging to failed startups and found he could recreate email ...