Virtually all of Google’s APIs currently support OAuth 2.0, a framework for allowing third-party apps limited access to your data from other services, as their standard authentication mechanism.

Researchers have discovered a flaw in Google’s OAuth system that could allow attackers to access potentially sensitive data from former employee accounts at defunct startups. Google’s OAuth is the ...

A weakness in Google’s OAuth “Sign in with Google” feature could enable attackers that register domains of defunct startups to access sensitive data of former employee accounts linked to various ...

Joining a growing number of enterprise and consumer-facing Web services, Google has added support in Google Apps for the OAuth authorization profile, the company announced Monday. OAuth was chosen ...

Facepalm: OAuth is an open standard designed to share account information with third-party services, providing users with a simple way to access apps and websites. Google, one of the companies ...

Google has stopped Wednesday’s clever email phishing scheme, but the attack may very well make a comeback. One security researcher has already managed to replicate it, even as Google is trying to ...

Researchers warn that unused domains could grant unauthorised access to sensitive SaaS accounts Researchers at Truffle Security have found a flaw in Google’s OAuth ‘Sign in with Google’ feature, ...

You really think someone would just go on the Internet and tell lies? An evil phishing worm masquerading as “Google Docs” took the Internet by storm today. It sent an e-mail claiming to be from a ...