PROJET AUTOBLOG

The Hacker News

Site original : The Hacker News

⇐ retour index

Google Apps Flaw Allowed Hacker to Hijack Account and Disable Two-factor Authentication

vendredi 23 janvier 2015 à 10:04
A critical cross-site scripting (XSS) vulnerability in the Google Apps administrator console allowed cyber criminals to force a Google Apps admins to execute just about any request on the https://admin.google.com/ domain. The Google Apps admin console allows administrators to manage their organization’s account. Administrators can use the console to add new users, configure permissions,