OAuth

2 minute read

Security

XSS and OAuth Combo Threatens Millions of Users Due to Hotjar Flaw

Cybersecurity Experts Uncover Critical Vulnerabilities in Leading Web Analytics Platform Hotjar, Potentially Exposing Sensitive Data of Millions of…

byWaqas

July 29, 2024

Malware Families Exploiting Google Cookie Exploit Through OAuth2 Functionality

2 minute read

Malware Leveraging Google Cookie Exploit via OAuth2 Functionality

Among others, developers of the infamous Lumma, an infostealer malware, are already using the exploit by employing advanced…

byDeeba Ahmed

December 29, 2023

Microsoft Cloud Hit by OAuth-Fueled Cybercrime Spree

3 minute read

Microsoft: Storm-1283 Sent 927,000 Phishing Emails with Malicious OAuth Apps

Cloud Security Shakeup: Experts Urge Caution as OAuth Becomes Hacker Playground.

byDeeba Ahmed

December 14, 2023

Social Login Flaws in Popular Websites Risked Billions of User Accounts

4 minute read

Security

Social Login Flaws in Popular Websites Risked Billions of User Accounts

The critical API security flaws in the social sign-in and OAuth (Open Authentication) implementations affected high-profile companies like…

byDeeba Ahmed

October 24, 2023

2 minute read

New Spam Attack Abusing OAuth Apps to Target Microsoft Exchange Servers

According to Microsoft 365 Defender Research Team, in an incident they analyzed, malicious OAuth applications were deployed on compromised cloud tenants, and eventually, attackers took over Exchange servers to carry out spam campaigns.

byDeeba Ahmed

September 23, 2022

The Latest

RansomHub Ransomware Gang Leaks 487GB of Alleged Kawasaki Europe Data

Flare’s FTSOv2 Launch Sets A New Standard For Decentralized Data

Entro Security Labs Releases Non-Human Identities Research Security Advisory

DeltaPrime Suffers $5.98M Loss as Hacker Exploits Admin Key on Arbitrum

OAuth

XSS and OAuth Combo Threatens Millions of Users Due to Hotjar Flaw

Malware Leveraging Google Cookie Exploit via OAuth2 Functionality

Microsoft: Storm-1283 Sent 927,000 Phishing Emails with Malicious OAuth Apps

New Spam Attack Abusing OAuth Apps to Target Microsoft Exchange Servers

Entro Security Labs Releases Non-Human Identities Research Security Advisory

SquareX, Awarded Rising Star Category in CybersecAsia Readers’ Choice Awards 2024

Aembit Raises $25 Million in Series A Funding for Non-Human Identity and Access Management

Criminal IP Teams Up with IPLocation.io to Deliver Unmatched IP Solutions to Global Audiences

Opus Security Elevates Vulnerability Management With its AI-Powered Multi-Layered Prioritization Engine