Researchers took over Booking.com accounts using a legitimate Facebook link

4 pointsaviCC3y ago1 comments

The vulnerability exists in OAuth (social sign-in), used by almost every website today. If you are unfamiliar with OAuth, the post (in the first comment) explains it step-by-step with detailed diagrams.

1 comments

aviCCOP3y ago

https://salt.security/blog/traveling-with-oauth-account-take...

Video: https://youtu.be/IK_AV1UFS-0

j / k navigate · click thread line to collapse

Researchers took over Booking.com accounts using a legitimate Facebook link

4 pointsaviCC3y ago1 comments

The vulnerability exists in OAuth (social sign-in), used by almost every website today. If you are unfamiliar with OAuth, the post (in the first comment) explains it step-by-step with detailed diagrams.

1 comments

aviCCOP3y ago

https://salt.security/blog/traveling-with-oauth-account-take...

Video: https://youtu.be/IK_AV1UFS-0

j / k navigate · click thread line to collapse