Threat Post

Twitter OAuth API Keys Leaked

The OAuth keys and secrets that official Twitter applications use to access users’ Twitter accounts have been leaked in a post to Github this morning. The OAuth keys and secrets that official Twitter ...
Threat Post

Twitter Warns Developers of API Bug That Exposed App Keys, Tokens

Twitter has fixed a caching issue that could have exposed developers’ API keys and tokens. Twitter developers are being warned of a security bug that may have exposed their applications’ credential ...
CMS Wire

Twitter Tightens API Rules: Increases Authentication, Decreases Requests Per Hour

Twitter plans to release version 1.1 of the Twitter API in the coming weeks, and it involves a number of new user restrictions. Changes will include required authentication on every API endpoint, a ...
CSOonline

Booking.com account takeover flaw shows possible pitfalls in OAuth implementations

Booking.com, one of the world’s largest online travel agencies, recently patched a vulnerability in its implementation of the OAuth protocol that could have allowed attackers to gain access to ...