Sources
Loading...
Additional media
Loading...
DeepNewz, mobile.
People-sourced. AI-powered. Unbiased News.
Cybersecurity experts have identified a critical OAuth redirect flaw in a popular airline travel service that has exposed millions of users to potential account hijacking. This vulnerability allows attackers to impersonate victims, make travel bookings, and utilize loyalty points with just a simple click. The incident highlights ongoing risks in the API supply chain and raises concerns about the security measures in place for airline users. The flaw was reported by multiple sources, including The Hacker News and darkreading, emphasizing the need for enhanced cybersecurity practices in the travel industry.
OAuth Flaw Exposed Millions of Airline Users to Account Takeovers: https://t.co/f7y3786VXe by darkreading #infosec #cybersecurity #technology #news
š Social engineering can bypass even the strongest #security practices š± One example is the Radiant Capital hack of October 2024, where attackers tricked developers into installing malware, enabling the theft of $53 million šø š How did this happen? š¤ We decypher š https://t.co/MyyEOrBRwk
OAuth Redirect Flaw in Airline Travel Integration Exposes Millions to Account Hijacking https://t.co/BzkkkMXSmp
