Deep Dive – Google OAuth bypass - Listen - Threat Talks - Your

Threat Talks - Your Gateway to Cybersecurity...

Deep Dive – Google OAuth bypass

Listen now

Description

In this deep dive of Threat Talks, we delve into the intricate realm of cybersecurity, spotlighting a newly uncovered vulnerability within Google's OAuth authentication system. Uncover a hidden feature in the Google multi-login API causing significant disruptions. Intended to streamline the authentication process for Google services like Gmail, Calendar, and Maps, this API harbors an undocumented functionality that enables nefarious actors to circumvent authentication measures, even following a password reset. Join us as we navigate through the complexities of this security flaw and its implications on digital safety. Interested in the full technical info of the discussed threats? For more detailed information or to access the infographic, please visit https://threat-talks.com/downloads/

More Episodes

See all »

Deep Dive - Capital One Data Breach

🔐 Do Your Configurations Keep You Safe? 🔐 How does a major financial institution like Capital One suffer a data breach that exposes over 100 million credit applications? In August 2019, a former Amazon employee was arrested for orchestrating a data breach that exposed over 100 million...

Published 09/24/24

Deep Dive - OKTA Data Breach

🚨 When Cybersecurity Experts Get Hacked 🚨 How does a company specializing in Identity and Access Management like OKTA suffer a data breach? In this case, a service account password was inadvertently saved by an OKTA employee to their personal Google account, which led to the credentials being...

Published 09/17/24

Threat Talks - Your Gateway to Cybersecurity Insights

Published 09/17/24