oauth

Heroku hackers got account passwords via OAuth token theft

Heroku hackers got account passwords via OAuth token theft

Hashed and salted user passwords exfiltrated.
May 6 2022 12:50PM
Heroku forces user password resets

Heroku forces user password resets

API access tokens invalidated.
May 5 2022 6:55AM
Microsoft warns of large 'Upgrade' phishing campaign

Microsoft warns of large 'Upgrade' phishing campaign

Machine learning picks up on suspicious OAuth use by app.
Jan 22 2022 8:37AM
PayPal fixes app authentication token hijack flaw

PayPal fixes app authentication token hijack flaw

Online payments processor didn't implement OAuth right.
Nov 29 2016 2:30PM
'Covert Redirect' vulnerability affects OAuth 2.0, OpenID

'Covert Redirect' vulnerability affects OAuth 2.0, OpenID

Hot on heels of Heartbleed.
May 5 2014 6:34AM
7000 Hootsuite users compromised via OAuth

7000 Hootsuite users compromised via OAuth

Spam diet bad for health.
Sep 11 2013 10:00AM
LinkedIn fixes OAuth flaw

LinkedIn fixes OAuth flaw

Researcher sends heads up.
Jul 23 2013 3:11PM
AusCERT2012: Locking down Mozilla's Web Apps

AusCERT2012: Locking down Mozilla's Web Apps

Top tips to boost web site security.
May 18 2012 12:22PM
Code surety: Secure by design

Code surety: Secure by design

Total security of applications is probably a pipe dream. However, starting a secure design framework today will markedly improve applications in the future, reports Deb Radcliff.
Mar 7 2012 5:34AM
Twitter to switch from basic access authentication to OAuth on its API

Twitter to switch from basic access authentication to OAuth on its API

Gone by August 31.
Aug 24 2010 2:07PM

Log In

  |  Forgot your password?