Millions of people imperiled through sign-in links sent by SMS

Websites that authenticate users through links and codes sent in text messages are imperiling the privacy of millions of people, leaving them vulnerable to scams, identity theft, and other crimes, ...
IEEE

sTrade 2.0: Efficient Mutual Authentication Scheme for Energy Trading in V2G Using Physically Unclonable Function

Abstract: This article presents a mutual authentication scheme for vehicle-to-grid (V2G) using physical unclonable functions (PUFs). Various security challenges exist during the transfer of ...

Facebook login thieves now using browser-in-browser trick

Hackers over the past six months have relied increasingly more on the browser-in-the-browser (BitB) method to trick users into providing Facebook account credentials.
The Hacker News

n8n Supply Chain Attack Abuses Community Nodes to Steal OAuth Tokens

Malicious npm packages posing as n8n community nodes were used to steal OAuth tokens by abusing trusted workflow integrations ...
GitHub

Godot OAuth 2.0 Plugin

A Godot plugin that provides a unified GDScript interface for OAuth 2.0 authentication flows on Android and iOS. It supports popular OAuth providers via presets (Google, Apple, GitHub, Discord, Auth0) ...
GitHub

keiraz-hang/oauth2_proxy

Prebuilt binaries can be validated by extracting the file and verifying it against the sha256sum.txt checksum file provided for each release starting with version v3.0.0. It's recommended to refresh ...