Security News

PayPal Fixes OAuth Token Leaking Vulnerability (Threatpost)
2016-11-28 20:52

PayPal fixed an issue that could have allowed an attacker to hijack OAuth tokens associated with any PayPal OAuth application. The vulnerability was publicly disclosed on Monday by Antonio Sanso,...

Tokens of terror spark 'major security update' at GitLab (The Register)
2016-11-04 07:13

Quantum Tokens for Digital Signatures (Schneier on Security)
2016-10-06 12:03

This paper wins "best abstract" award: "Quantum Tokens for Digital Signatures," by Shalev Ben David and Or Sattath: Abstract: The fisherman caught a quantum fish. "Fisherman, please let me go,"...

Google to Revoke OAuth 2.0 Tokens Upon Password Reset (SecurityWeek)
2016-09-22 16:05

Google automates Apps OAuth token revocation (The Register)
2016-09-22 02:35

Hacking mobile login tokens tricky but doable, says reverse-engineer (The Register)
2016-09-02 18:03

Samsung Pay Token Flaw Allows Fraudulent Transactions (SecurityWeek)
2016-08-08 11:34

Bitfinex exchange customers to get 36 percent haircut, debt token (Yahoo Security)
2016-08-07 04:19

Slack Plugs Token Security Hole (Threatpost)
2016-04-30 11:25

Slack fixes a security loophole that opened hundreds of corporate Slack accounts to the public.

Slack Tokens Leaked on GitHub Put Companies at Risk (SecurityWeek)
2016-04-29 13:03