API Bug in OAuth dev tool opened websites, apps to account hijacking

25 May 2023

A critical API flaw in the Expo open-source framework allow attackers to harvest auth credentials via the Open Authorization (OAuth) protocol. The vulnerability, while impacting a relatively small number of developers, had the potential to impact a wide range of users logging in to online services such as Facebook, Twitter or Spotify via the open-source framework, according to researchers at Salt Labs that found the bugs.

Read full article on SC Magazine

Date:

25 May 2023

Categorie(s):

NEWS

Tag(s):

Bug, IT, News, OAuth

Ex-Cybersecurity Consultant Jailed For Trading Confidential Data4 May 2024
Microsoft plans to lock down Windows DNS like never before. Here’s how.4 May 2024
Kaspersky hits back at claims its AI helped Russia develop military drone systems4 May 2024
Kaspersky hits back at claims it helped Russia develop military drone systems3 May 2024
Smoke and (screen) mirrors: A strange signed backdoor3 May 2024