Y
Hacker News
new
|
ask
|
show
|
jobs
by
crgwbr
2758 days ago
That’s providing that the login page you enter your credentials in actually is Google/Facebook. The app can easily open a login page which looks identical, but actually submits your credentials somewhere nefarious.