GitHub

extrabacon/google-oauth-jwt

Google OAuth 2.0 authentication for server-to-server applications with Node.js. This library generates JWT tokens to establish identity for an API, without an end-user being involved. This is the ...
GitHub

google-oauth-drive-example

This example shows how to create a basic Google OAuth flow with Google Drive integration as of 2023. There are three different flows you can use, first is using Drive API directly from the client ...
Bleeping Computer

Google OAuth flaw lets attackers gain access to abandoned accounts

A weakness in Google’s OAuth “Sign in with Google” feature could enable attackers that register domains of defunct startups to access sensitive data of former employee accounts linked to various ...
ZDNet

Gmail fake Docs attack: Now Google tightens OAuth rules to block phishing

To prevent further fake Docs phishing attacks on Gmail users, Google says it will tighten enforcement of the OAuth system it uses for linking third-party apps to Google accounts. Google has offered a ...
SecurityWeek

Google OAuth Flaw Leads to Account Takeover When Domain Ownership Changes

A vulnerability in Google’s OAuth implementation allows takeover of old employee accounts when domain ownership changes. A vulnerability in Google’s OAuth implementation can be abused to take over the ...
CSOonline

Highly exploited Chromium bug traced to a Google OAuth endpoint

An undocumented Google OAuth endpoint has been identified to be the root of the notorious info stealing exploit that is being widely implemented by various threat actors in their codes since it ...
TechSpot

Google OAuth secrets exposed as account-hijacking MultiLogin vulnerability discovered

Facepalm: OAuth is an open standard designed to share account information with third-party services, providing users with a simple way to access apps and websites. Google, one of the companies ...