Another day, another major internet security flaw (step aside, Heartbleed). A bug has been found in OpenID and OAuth 2.0, two authentication programs that let you log into web sites using your Google, ...

Nginx on Tuesday released its latest product offering, the Plus R8, which includes an initial release of OAuth 2-based authentication. Nginx CEO Gus Robertson said that many of today's most popular ...

Two-factor authentication is the best protection against any of those, plus so much more. I'll explain what it is and why you should enable it whenever possible. Sometimes called 2-factor ...

We reported earlier on hints from Google employee Tim Bray that the company might be working on an integrated password and login solution. We know Bray is working on OAuth and OpenID-related projects, ...

ShinyHunters compromised Google, Qantas & dozens more using OAuth device flow attacks—bypassing MFA without exploiting a single software bug. My deep-dive analysis reveals how they did it and what ...

The vulnerability, which exploits Facebook’s OAuth authentication dialog, was detailed by security researcher Nir Goldshlager in a blog post last week. The flaw reportedly gave Goldshlager “full ...

Salesloft on Tuesday announced that it's taking Drift temporarily offline "in the very near future," as multiple companies ...