password reset

Pierluigi Paganini September 23, 2016
As of October 5, automatic OAuth 2.0 token revocation upon password reset

Google announced a change to its security policy to increase the account security that includes the OAuth 2.0 token revocation upon password reset. Google has finally announced a new OAuth 2.0 token revocation according to its security policy, the company will roll out the change starting on Oct. 5. The change to the Google security policy […]

Pierluigi Paganini June 21, 2015
Password Recovery Scam – how to hack a Gmail account

Security experts at Symantec are warning about a new password recovery scam targeting Gmail users worldwide mainly for intelligence gathering. Every day scammers propose new techniques to steal personal information and other sensitive data. Today we will speak of a new social engineering technique used in the wild by crooks that allow them to hack into […]

Pierluigi Paganini April 30, 2015
Flawed password reset procedure exposes Betfair accounts

Experts demonstrated the presence of critical vulnerabilities in the password recovery procedure of the website of the online betting exchanges Betfair. A security expert discovered a flaw in the password recovery process on the website of online betting exchanges Betfair. Betfair is one of the world’s largest online betting exchanges, and this vulnerability represents a […]