A sophisticated exploit targeting Google’s OAuth2 authentication system was uncovered by Prisma threat actor. This exploit leverages undocumented functionalities within Google’s MultiLogin endpoint, enabling attackers to generate and maintain persistent Google cookies even after a password reset. OAuth2 Vulnerability Allows for Persistent Session Hijacking The attackers found a way to use specific components within the… Continue reading OAuth2 Session Hijack Vulnerability: Details Uncovered
The NordPass password manager team has prepared annual statistics by analysing the most commonly used and weakest passwords of 2022. Let me remind you that we also wrote that Password meter services put Internet users at risk. Years go by and some things don’t change. After reviewing more than 3 TB of data provided by… Continue reading “Password” Topped the List of the Most Common Passwords in 2022
Password Spraying – quite careless, a rough form of attack. After several attempts to log in, the site begins to block the entrance. But attackers bypass this block; after the first failed attempt, they start to hack other accounts and so on. Password spraying is a kind of cyber attack. The attacker wants to hack… Continue reading Password Spraying Attack Overview
Do you think that you are protected from hackers? Of course, you are using a wireless access point with encryption. You are wrong! pull your password from the air! There are 4 things, that hackers hope you won’t find out WEP encryption is unworkable for protecting your wireless network. WEP (stands for Wired Equivalent Privacy… Continue reading How can hackers crack your router?