Search Engine Vulnerabilities, Ghost Tokens, Anna Kournikova
Hacker And The Fed
OAuth Fishing: A Social Engineering Campaign
OAuth fishing has been very, I want to say, hasn't been prominent as opposed to other kind of social engineering campaigns you're kind of used to. And so what they're doing is they are tricking people into downloading the application. Once authorized and giving authority for your credentials into access that application, then they can turn off or put their project into limbo.
00:00
Transcript
Play full episode
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
