Oof… That not good. But I think they’ll just have to invalidate all the tokens, right? That should be pretty easy, right?
Google OAuth secrets exposed as account-hijacking MultiLogin vulnerability discovered
Submitted 5 months ago by throws_lemy@lemmy.nz to technology@lemmy.world
Comments
cyborganism@lemmy.ca 5 months ago
TragicNotCute@lemmy.world 5 months ago
everyone has been logged out
NotMyOldRedditName@lemmy.world 5 months ago
Gonna need to hire another 500,000 support agents.
AliasAKA@lemmy.world 5 months ago
Oof. Another good reason to use Firefox I guess?
Eggyhead@kbin.social 5 months ago
Just to add a little more weight to your point.