Y
Hacker News
new
|
ask
|
show
|
jobs
Researchers took over Booking.com accounts using a legitimate Facebook link
4 points
by
aviCC
1200 days ago
The vulnerability exists in OAuth (social sign-in), used by almost every website today. If you are unfamiliar with OAuth, the post (in the first comment) explains it step-by-step with detailed diagrams.
1 comments
aviCC
1200 days ago
https://salt.security/blog/traveling-with-oauth-account-take...
Video:
https://youtu.be/IK_AV1UFS-0
link
Video: https://youtu.be/IK_AV1UFS-0