Google Moves Developers to OAuth to Help Prevent Phishing Attacks

Dennis Fisher reports:

In an effort to cut off an avenue used in some phishing attacks, Google is planning to block authentication attempts from some apps that use embedded browser frameworks in the near future.

The change is part of a broader initiative by the company to get a better handle on when and how legitimate users sign in, which in turn allows engineers to determine what inauthentic sign-in attempts look like.

Read more on Decipher.

About the author: Dissent