Security News

WordPress iOS App Bug Leaked Secret Access Tokens to Third-Party Sites
2019-04-03 14:48

If you have a "private" blog with WordPress.com and are using its official iOS app to create or edit posts and pages, the secret authentication tokens for your admin account might have...

Vulnerability in Android Instant Apps can be used to steal history, authentication tokens
2019-03-21 13:55

Google's Instant Apps feature allows you to try apps before installing them, though a vulnerability allows attackers to abuse the feature to steal data.

You. Shall. Not. Pass... word: Soon, you may be logging into websites using your phone, face, fingerprint or token
2019-03-05 21:37

Just don't lose your hardware keys RSA At 2004's RSA Conference, then Microsoft chairman Bill Gates predicted the death of the password because passwords have problems and people are bad at...

Securrency introduces multi-ledger security token protocols
2018-10-08 12:46

Securrency introduced the Compliance Aware Token (CAT-20 and CAT-721) standards, a truly interoperable ledger-agnostic security token protocol. Security tokens minted with the CAT protocols are...

Facebook Can't Reset All Breach Victims' Access Tokens
2018-10-03 10:33

Social Network Reveals It Cannot Log Users Out of All Third-Party ServicesWarning: Attackers behind the recently revealed Facebook mega-breach may still be able to access victims' accounts at some...

Hackers Steal 50 Million Facebook Users’ Access Tokens Using Zero-Day Flaw
2018-09-28 17:48

2018 has been a terrible year for Facebook. Facebook just admitted that an unknown hacker or a group of hackers exploited a zero-day vulnerability in its social media platform that allowed them to...

Facebook offers bounties for user token bugs in third-party apps, websites
2018-09-18 12:34

Facebook is expanding its bug bounty program to include vulnerabilities in third-party apps and websites that involve improper exposure of Facebook user access tokens. What’s in scope? “Access...

Facebook Offers Rewards for Access Token Exposure Flaws
2018-09-18 09:43

Facebook announced on Monday that it has expanded its bug bounty program to introduce rewards for reports describing vulnerabilities that involve the exposure of user access tokens. read more

Facebook Now Offers Bounties For Access Token Exposure
2018-09-17 17:43

The newly expanded Facebook bug bounty program sniffs out access token exposure flaws.

Leaked GitHub API Token Exposed Homebrew Software Repositories
2018-08-09 13:50

A GitHub API token leaked from Homebrew’s Jenkins provided a security researcher with access to core Homebrew software repositories (repos). read more