9to5google

Google Play services platform with Google+ APIs and OAuth 2.0 begins to rollout

Google previewed Google Play services at Google I/O, and it finally just began the official launch of its new platform designed to help developers integrate Google products, such as Google+, into ...

OAuth Device Code Phishing: Azure vs. Google Compared

Azure can yield very powerful tokens while Google limits scopes, reducing the blast radius. Register for Huntress Labs' Live Hack to see live Microsoft 365 attack demos, explore defensive tactics, and ...
SiliconANGLE

Google improves G Suite security: How to get started with new OAuth apps whitelisting

Google Inc. announced a new feature Thursday called OAuth apps whitelisting that allows G Suite administrators to control how third-party applications use employees’ data. Gmail was hit by a ...
adtmag.com

Google Publishes App OAuth Verification Guidance

As part of a data security initiative, Google has published guidance for developers to get their apps ready for OAuth verification by the company. The guidance stems from last year's launch of Project ...
Dark Reading

Attackers Abuse Google OAuth Endpoint to Hijack User Sessions

Attackers have been exploiting an undocumented Google OAuth endpoint to hijack user sessions and allow continuous access to Google services, even after a password reset. A threat actor called "Prisma" ...
ZDNet

Gmail fake Docs attack: Now Google tightens OAuth rules to block phishing

To prevent further fake Docs phishing attacks on Gmail users, Google says it will tighten enforcement of the OAuth system it uses for linking third-party apps to Google accounts. Google has offered a ...
TechCrunch

Google Analytics For APIs Apigee Launches Premium Products

We’ve written about Apigee, which offers Web developers and publishers a dashboard for managing both the APIs they provide to others and the ones they consume for themselves. It’s essentially a Google ...