Collaborate Disseminate
Uber patched an authentication bypass vulnerability in its homegrown SSO solution that allowed attackers to take over subdomains and steal session cookies. Continue reading Uber Patches Authentication Bypass Vulnerability on Custom SSO Solution
Facebook paid researcher Arne Swinnen a $5,000 bounty for a pair of authentication vulnerabilities in Instagram that enabled brute-force attacks against usernames and passwords. Continue reading Instagram Patches Brute-Force Authentication Flaws
Facebook was quick to fix an issue earlier this month that could’ve let an attacker break into four percent of all active, locked accounts. Continue reading Facebook Fixes Instagram Vulnerability That Opened 1M Accounts to Compromise