RST Threat feed. IOC: oauth-services.live

Found **oauth-services[.]live** in [RST Threat Feed](https://rs...Read More ...

Continue Reading
RST Threat feed. IOC: ssl-oauth.com

Found **ssl-oauth[.]com** in [RST Threat Feed](https://rstcloud...Read More ...

Continue Reading
JVN#15317878: Spring Security OAuth (spring-security-oauth2) vulnerable to denial-of-service (DoS)

Spring Security OAuth (spring-security-oauth2) provided by VMware, Inc. contains a denial-of-service vulnerability due to uncontrolled resource consumption ([CWE-400]()). Note that Spring Security OAu ...

Continue Reading
High-Severity Bug Reported in Google’s OAuth Client Library for Java

[![Google's OAuth Client Library for Java](https://thehackernews.com/new-images/img/b/R29vZ2xl/AVvXsEjALy9QMXTUv6ySyu_gytORGXUFbFnfcP5yvZm5Q_Kh3izl6dVLvh3ErdT7eMropcP3J1HII1l5Ugb9f29fbOB2ExRE5EcKbo68O ...

Continue Reading
Gmail-linked Facebook accounts vulnerable to attack using a chain of bugs—now fixed

A security researcher has [disclosed]() how he chained together multiple bugs in order to take over Facebook accounts that were linked to a Gmail account. Youssef Sammouda states it was possible to ta ...

Continue Reading
Easy authentication and authorization in Azure Active Directory with No-Code Datawiza

_This blog post is part of the Microsoft Intelligent Security Association _[_guest blog series_]()_. _[_Learn more about MISA_]()_._ The acceleration of cloud journeys fueled by the pandemic and ever- ...

Continue Reading
URL Redirection to Untrusted Site (‘Open Redirect’) in next-auth

### Impact We found that this vulnerability is present when the developer is implementing an OAuth 1 provider (by extension, it means Twitter, which is the only built-in provider using OAuth 1), but * ...

Continue Reading

Back to Main

Subscribe for the latest news: