#oauth resultados de búsqueda
Headless can solve the problem of users authenticating twice in iframes by generating member tokens and injecting session cookies into your website. #OAuth #iframes
🧠 Open Redirect → OAuth Token Theft 1️⃣ App redirects to URLs from untrusted params 2️⃣ Attacker crafts redirect to malicious OAuth callback 3️⃣ Victim approves login → token sent to attacker 4️⃣ Full account compromise 🎯 Open redirect + OAuth = easy takeover #bugbounty #OAuth
Use a public-facing URL to test an MCP server with actual clients in the cloud. This OAuth flow is secured with Pomerium, and the MCP server knows nothing about OAuth. #MCPserver #OAuth
🚀 Blocklet Server now supports Twitter OAuth login, adding a new third-party option for user authentication! Log in easily using your Twitter account. #OAuth #Blocklet
Access tokens are usually bearer tokens, like cash 💵, usable by anyone who gets them. DPoP is an OAuth 2.0 extension that makes tokens non-transferable, like a check 🎫, rendering them useless to attackers. Learn more here👇 auth0.com/blog/protect-y… #dpop #oauth #access_token
One Week to Resumption! OAU Freshers and Stalites! Have you secured your apartment? You can reach out to us for your apartment off campus 🏠✅✅ Send us a DM on WhatsApp --- +2349136631714 #oauth #oau #greatife #OAUtwitter
🔐 New in Faveo Helpdesk → Secure Gmail Authentication with OAuth! ✔ Stronger security ✔ Safer Gmail integration ✔ Seamless support workflows 🚀 #FaveoHelpdesk #HelpdeskSoftware #OAuth #GmailIntegration #Cybersecurity
#OAuth と #OIDC の基礎から勉強し直してやっと #SUI の #ZKLogin 動かせた...!!! Sui上のアドレスとOAuth識別子(例:Google ID)が直接リンクされることがない点が #ZKLogin の良いところ!!
🧵【#企業公式相互フォロー】【A.123 API認可制御】 APIは“呼び出せる”ではなく“権限がある人だけ”に。 📌 Azure対応例: API ManagementでOAuth2.0認可必須化 呼出元IP制限/スロットリング設定 📎 証憑:APIポリシー、利用ログ、権限一覧 #API管理 #OAuth
#oauth #phishing campaign against 🇮🇹 #m365 tenants #BEC offline_access mailread mail.send through GraphAPI *.expressive,com,de/DqaBV/ -> s://5140390597,cyou/helen.php maybe #Flowerstorm @illegalFawn @phishunt_io @PhishKitTracker @ActorExpose @AgidCert @JAMESWT_WT
If you administer at least one Microsoft 365 tenant, you might find some surprising results if you audit your #OAuth applications 👀 Statistically speaking, there’s a good chance your tenant is infected with a rogue app that could be malicious 😱
All major security vendors breached. The culprit - simply relying on #OAuth federated access management. With AI Agents, this risk grows exponentially. DIDs, p2p auth, continuous auth, dynamic federation and onchain logs with #AuthChain will help fix this. @RubixChain…
Palo Alto Networks data breach exposes customer info, support cases bleepingcomputer.com/news/security/…
🚨 Salesloft OAuth token breach → @salesforce data theft. UNC6395 threat actor stole AWS keys, Snowflake tokens & creds via Drift-Salesforce integration (Aug 8–18). Salesloft revoked tokens; Salesforce pulled the app. #CyberSecurity #Salesforce #oauth
🚀 Day 26 | Java Full Stack Journey 🔐 Learned Spring Security & OAuth Authentication 🔹 Securing endpoints with Spring Boot 🔹 Role-based access control 🔹 OAuth for modern app authentication #Java #SpringSecurity #OAuth #100DaysOfCode #FullStackDeveloper
You may be seeing “Drift” in your #CASB this week—but in many cases this reflects staff visiting sites the embed the Drift widget—not an #OAuth-authorized application in your tenant. Read our latest blog to discover how to make sure you’re in the clear. 👉 bit.ly/4psxUNU
In a new technical blog, @Proofpoint threat researchers detailed their observations of threat actors impersonating well-known enterprises with fake #Microsoft #OAuth applications that redirect to malicious URLs, enabling #credentialphishing. brnw.ch/21wUzs1
#AuthChain fixes the AI security risks. Simple #OAuth based federation is insufficient for AI security.
OAuth based security alone is not sufficient for AI. This breach at #Google and #Salesforce confirms the same. We need OAuth+DID+Blockchain based provencne to secure AI Agents. #AI #AIAgents @RubixChain @TrieNetwork
#MCP and #OAuth are not a good fit - lets push authorization down to the MCP server. More on why + my proposed solution 👇
Open source moves at its own pace. Jacob Champion talks about the long road to #PostgreSQL18’s new #OAuth feature and how EDB makes space for quick wins inside multi-year projects. Full discussion for more on OAuth, testing, and what’s next for PG19: youtube.com/watch?v=wrQySN…
Headless can solve the problem of users authenticating twice in iframes by generating member tokens and injecting session cookies into your website. #OAuth #iframes
Understanding OAuth 2.0 — The Foundation of Modern Web Security by Sanjay Singh stackdevflow.com/posts/understa… #oauth #Google
Lineログイン認証をAngularを使ったWebサイトに組み込む手順を解説します。 プロフィールURLの「フロントエンド」-「Lineログイン認証をWebサイトに組み込む」 参照下さい。 #Lineログイン #OAuth #Angular
🚨 Breaking: New research reveals AI browsers vulnerable to #OAuth attacks, allowing easy malware downloads & malicious link distribution! 🚫🔗 Is your browser at risk? Discover how these #CyberSecurity threats are unfolding & what you can do to stay safe!
Many SaaS breaches begin with overlooked tokens, not missing patches. Old OAuth/API keys let attackers bypass MFA, move laterally, and access sensitive data. Audit, rotate, and restrict SaaS tokens now.🔗 zurl.co/Sq5in #SaaSSecurity #OAuth #CloudSecurity
Stay informed about the latest developments in single sign-on. 👉 Hackletter Q3/2025 🇩🇪 hackmanit.de/en/blog-news/h… 🇺🇸 hackmanit.de/en/blog-news/h… 🌐 Hackletter Series 🇩🇪 hackmanit.de/de/blog-news/h… 🇺🇸 hackmanit.de/en/blog-news/h… #SSO #OAuth #OIDC #saml
Googleログイン認証をAngularを使ったWebサイトに組み込む手順を解説します。 プロフィールURLの「フロントエンド」-「Googleログイン認証をWebサイトに組み込む」 参照下さい。 #Googleログイン #OAuth #Angular
Four years. Countless reviews. #PostgreSQL18 now ships with native #OAuth 2.0. EDB engineer Jacob Champion shares how the community played the long game to land this feature and where authentication goes next ➡️ enterprisedb.com/blog/developin…
Join us for a free webinar hosted by @kuppingercole on Oct. 21 at 4:00 PM CEST/10:00 AM EDT. Learn how to simplify #OAuth and #OpenID implementations while ensuring a seamless user experience and complete control of your identity stack. Register now: kuppingercole.com/events/2025/10…
#OAuth / #OpenID を学びたい方、おさらいしたい方、ぜひ、10/29 (水)開催の「OAuth & OpenID Connect 勉強会ー標準仕様による徹底的なAPI保護」にご参加ください!仕様の策定に携わる @darutk が主な仕様や実装のコツについてご説明します。ご登録はこちらから👇 authlete.connpass.com/event/370358/ #OIDC
“Login with Google.” Easy for users. Pain for developers SSO, OAuth, JWT… mastering auth across services isn’t about copying tutorials — it’s about understanding trust flow. Secure once, scale everywhere. #Authentication #OAuth #JWT #SSO #WebSecurity #SoftwareEngineering
🔐 The Salesloft–Drift breach shows attackers don’t need to “hack Google” — they exploit trusted OAuth integrations instead. Experts urge firms to secure tokens, monitor risky app behavior, and defend data at the integration layer. #SaaSSecurity #GoogleWorkspace #OAuth
Don't just protect Google! 🚨 Salesloft Drift showed third-party apps are the real target. Secure your Google Workspace data from OAuth breaches. bleepingcomputer.com/news/security/… #GoogleWorkspaceSecurity #CloudSecurity #OAuth
Having trouble with Google Sign-In — after picking an account, it loops back to the login page instead of staying logged in Redirect URIs are all correct. Anyone else faced this? #WebDev #GoogleAuth #OAuth #Supabase
Lesson learned: Start OAuth verification on Day 1, not Week 3 😅 Google: "We need 2-4 weeks to review" Facebook: "Submit your privacy policy first" Me: "But I just want users to log in..." Note to self: Next project starts with auth verification while building MVP. #solo #oauth
Warning: The #OAuth SSO plugin for #Wordpress suffers from insecure access control due to improper JTW token validation, allowing unauthenticated attackers to bypass authentication. The tracked #CVE-2025-9485 is critical, more info at bit.ly/3KWl2j3 #patch #patch #patch
New code drop from SlashDB in open source: OpenID Connect/OAuth 2 recipes github.com/SlashDB/slashd… #OpenSource #Python #oauth #code
One Week to Resumption! OAU Freshers and Stalites! Have you secured your apartment? You can reach out to us for your apartment off campus 🏠✅✅ Send us a DM on WhatsApp --- +2349136631714 #oauth #oau #greatife #OAUtwitter
10/29(水)開催の「#OAuth & #OpenID Connect 勉強会ー標準仕様による徹底的な API 保護」では、MTLS、DPoP、RAR、HTTP メッセージ署名など、増え続ける標準仕様と実装のポイントについて、仕様策定に携わる @darutk が、わかりやすく説明します。 詳細・お申込みはこちら👇 authlete.connpass.com/event/370358/
FB OAuth Misconfiguration Leads to Takeover any Account #bugbounty #pentesting #oauth #fb sl4x0.medium.com/fb-oauth-misco…
🧠 Open Redirect → OAuth Token Theft 1️⃣ App redirects to URLs from untrusted params 2️⃣ Attacker crafts redirect to malicious OAuth callback 3️⃣ Victim approves login → token sent to attacker 4️⃣ Full account compromise 🎯 Open redirect + OAuth = easy takeover #bugbounty #OAuth
mamma mia 🤌🤌 #ATO on #Google One Tab #OAuth deferent from always. Write-up will coming soon. #BugBounty
Despite being central to their security, many orgs struggle to securely implement #OAuth. Our new post walks through common issues & how to prevent them, along with a useful checklist! Read it today & ensure your org is secure: blog.doyensec.com/2025/01/30/oau… #doyensec #security #appsec
OpenID Connect makes it possible to authenticate users using #OAuth 2.0. What are some benefits of working with #openidconnect 🏆 🚀 ? 1. Single Sign-On (SSO) 2. Security 3. Reduced friction 4. Up-to-date information Learn more: blog.postman.com/what-is-openid…
🚀 Day 26 | Java Full Stack Journey 🔐 Learned Spring Security & OAuth Authentication 🔹 Securing endpoints with Spring Boot 🔹 Role-based access control 🔹 OAuth for modern app authentication #Java #SpringSecurity #OAuth #100DaysOfCode #FullStackDeveloper
One Week to Resumption! OAU Freshers and Stalites! Have you secured your apartment? You can reach out to us for your apartment off campus 🏠✅✅ Send us a DM on WhatsApp --- +2349136631714 #oauth #oau #greatife #OAUtwitter
Please Retweet for reach. AIPRM is growing too fast for Google defaults. We need someone at Google to help us to connect more than 10,000 new users/day with their API, we still have default OAuth limit. Do YOU know anyone that could help? #oauth #limit #google #accounts
LLMs don’t speak backend. MCP does. It’s the protocol letting LLMs call tools, fetch data & yes—get dog pics 🐶 🔑 OAuth 2.1 ⚙️ Transports (stdio, SSE, custom) 🛠️ Real-world demo By @jcmartinezdev → bit.ly/4l8yk8K #MCP #GenAI #OAuth #APIs #AIsecurity #LLM #DevTools
Access tokens are usually bearer tokens, like cash 💵, usable by anyone who gets them. DPoP is an OAuth 2.0 extension that makes tokens non-transferable, like a check 🎫, rendering them useless to attackers. Learn more here👇 auth0.com/blog/protect-y… #dpop #oauth #access_token
#BEC, #AiTM, QR code, #OAuth... then next is LinkedIn Smart Link phishing campaign...... ☣ ”Smart Links have proven to bypass security email gateways (SEGs) and other email security suites due to the link using a trusted domain” techcommunity.microsoft.com/t5/microsoft-d…
If you administer at least one Microsoft 365 tenant, you might find some surprising results if you audit your #OAuth applications 👀 Statistically speaking, there’s a good chance your tenant is infected with a rogue app that could be malicious 😱
OAuth 2.0 offers many benefits that have made it the gold standard for authorization. What are the benefits? 🛡 👇 ✅ Simplified flow ✅ Multiple access token types ✅ User control ✅ Industry adoption ✅ Authorization Learn more about #OAuth here: blog.postman.com/what-is-oauth-…
O que é OAuth 2.0 Read the full article: Entendendo a Diferença entre JWT, OAuth e SAML ▸ lttr.ai/ALBAO #Autenticação #JWT #OAuth #SAML
In a new technical blog, @Proofpoint threat researchers detailed their observations of threat actors impersonating well-known enterprises with fake #Microsoft #OAuth applications that redirect to malicious URLs, enabling #credentialphishing. brnw.ch/21wUzs1
Something went wrong.
Something went wrong.
United States Trends
- 1. Chiefs 85.9K posts
- 2. Brian Branch 3,211 posts
- 3. #TNABoundForGlory 42K posts
- 4. #LoveCabin N/A
- 5. Mahomes 24.4K posts
- 6. LaPorta 9,489 posts
- 7. Goff 12.5K posts
- 8. #OnePride 5,965 posts
- 9. Bryce Miller 3,623 posts
- 10. Kelce 13.7K posts
- 11. Butker 8,006 posts
- 12. #DETvsKC 4,341 posts
- 13. #ALCS 9,748 posts
- 14. Mariners 43.4K posts
- 15. Baker 50.8K posts
- 16. Gibbs 5,403 posts
- 17. Dan Campbell 2,262 posts
- 18. Collinsworth 2,527 posts
- 19. Pacheco 4,587 posts
- 20. Tyquan Thornton 1,129 posts