Erik van Straten<p>🚨 Identity fraud on Mastodon</p><p>Just a reminder that there is a lot of identity fraud happening on the internet, increasingly on Mastodon as well.</p><p>Often impersonators are easy to detect (like the ones below) - but sometimes existing accounts are taken over by criminals. Always keep in mind that someone on the internet interacting with you may (currently) not be who they claim to be.</p><p>This includes my account. If it does not sound like me, it may not be me. Having doubts and double checking are good habits. Reputation (good or bad) is a useful property for knowing who you're dealing with, and to help detect anomalies.</p><p>Accounts with a few or 0 followers, and hardly any or just plain pointless toots, may be bots or criminals coming after your money.</p><p>If someone appears to only follow random Mastodonts with lots of followers, either they're noobs or they're here with less friendly intentions. If they then start following possibly lonely people, they *may* be trying to gain their attention and trust - maybe for nefarious purposes.</p><p>🤔 Recently the following people started following the automated channel <a href="https://mastodon.world/@auschwitzmuseum/followers" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">mastodon.world/@auschwitzmuseu</span><span class="invisible">m/followers</span></a>:</p><p>Kendal Jenner [1]<br>Jennifer Aniston [2]<br>Stephen King [3]<br>Keanu Reeves [4]<br>Keanu Reeves [5]</p><p>They all abuse the pictures of the real persons they impersonate (they're not just following the Auschwitz Memorial BTW).</p><p>[1] <a href="https://mastodon.social/@kendall01/following" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">mastodon.social/@kendall01/fol</span><span class="invisible">lowing</span></a><br>[2] <a href="https://mastodon.social/@Jenniferaniston123/following" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">mastodon.social/@Jenniferanist</span><span class="invisible">on123/following</span></a><br>[3] <a href="https://mastodon.social/@Stevenkvng/following" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">mastodon.social/@Stevenkvng/fo</span><span class="invisible">llowing</span></a><br>[4] <a href="https://mastodon.social/@keanureeves1928/following" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">mastodon.social/@keanureeves19</span><span class="invisible">28/following</span></a><br>[5] <a href="https://mastodon.social/@reeves001/following" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">mastodon.social/@reeves001/fol</span><span class="invisible">lowing</span></a> (screenshot below)</p><p><a href="https://infosec.exchange/tags/IdentityFraud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IdentityFraud</span></a> <a href="https://infosec.exchange/tags/Impersonation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Impersonation</span></a> <a href="https://infosec.exchange/tags/Authentication" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Authentication</span></a> <a href="https://infosec.exchange/tags/Identity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Identity</span></a> <a href="https://infosec.exchange/tags/IdentityVerification" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IdentityVerification</span></a> <a href="https://infosec.exchange/tags/Auschwitz" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Auschwitz</span></a></p>
Recent searches
No recent searches
Search options
Only available when logged in.
mastodon.world is one of the many independent Mastodon servers you can use to participate in the fediverse.
Generic Mastodon server for anyone to use.
Administered by:
Server stats:
10Kactive users
mastodon.world: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.7
#authentication
13 posts · 11 participants · 0 posts today
Pyrzout :vm:<p>The Enterprise-Ready Dilemma: Navigating Authentication Challenges in B2B SaaS – Source: securityboulevard.com <a href="https://ciso2ciso.com/the-enterprise-ready-dilemma-navigating-authentication-challenges-in-b2b-saas-source-securityboulevard-com/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">ciso2ciso.com/the-enterprise-r</span><span class="invisible">eady-dilemma-navigating-authentication-challenges-in-b2b-saas-source-securityboulevard-com/</span></a> <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>rssfeedpostgeneratorecho</span></a> <a href="https://social.skynetcloud.site/tags/SecurityBloggersNetwork" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SecurityBloggersNetwork</span></a> <a href="https://social.skynetcloud.site/tags/AIandB2BSaaSgrowth" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AIandB2BSaaSgrowth</span></a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurityNews</span></a> <a href="https://social.skynetcloud.site/tags/SecurityBoulevard" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SecurityBoulevard</span></a> <a href="https://social.skynetcloud.site/tags/Identity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Identity</span></a>&Access <a href="https://social.skynetcloud.site/tags/authentication" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>authentication</span></a> <a href="https://social.skynetcloud.site/tags/BestPractices" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BestPractices</span></a> <a href="https://social.skynetcloud.site/tags/enterprise" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>enterprise</span></a> <a href="https://social.skynetcloud.site/tags/Growth" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Growth</span></a> <a href="https://social.skynetcloud.site/tags/IAM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IAM</span></a></p>
Pyrzout :vm:<p>The UK’s phone theft crisis is a wake-up call for digital security <a href="https://www.helpnetsecurity.com/2025/04/18/uk-phone-theft-crisis/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">helpnetsecurity.com/2025/04/18</span><span class="invisible">/uk-phone-theft-crisis/</span></a> <a href="https://social.skynetcloud.site/tags/Expertanalysis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Expertanalysis</span></a> <a href="https://social.skynetcloud.site/tags/authentication" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>authentication</span></a> <a href="https://social.skynetcloud.site/tags/mobilesecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>mobilesecurity</span></a> <a href="https://social.skynetcloud.site/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://social.skynetcloud.site/tags/NukeFromOrbit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NukeFromOrbit</span></a> <a href="https://social.skynetcloud.site/tags/Expertcorner" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Expertcorner</span></a> <a href="https://social.skynetcloud.site/tags/smartphones" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>smartphones</span></a> <a href="https://social.skynetcloud.site/tags/Don" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Don</span></a>'tmiss <a href="https://social.skynetcloud.site/tags/Hotstuff" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Hotstuff</span></a> <a href="https://social.skynetcloud.site/tags/opinion" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>opinion</span></a> <a href="https://social.skynetcloud.site/tags/theft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>theft</span></a> <a href="https://social.skynetcloud.site/tags/News" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>News</span></a> <a href="https://social.skynetcloud.site/tags/UK" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UK</span></a></p>
2rZiKKbOU3nTafniR2qMMSE0gwZUnderstanding TOTP Authentication: A Deep Dive into Time-Based One-Time Passwords In today’s di...<br><br><a href="https://systemweakness.com/understanding-totp-authentication-a-deep-dive-into-time-based-one-time-passwords-31926a543368?source=rss----f20a9840e177---4" rel="nofollow noopener noreferrer" target="_blank">https://systemweakness.com/understanding-totp-authentication-a-deep-dive-into-time-based-one-time-passwords-31926a543368?source=rss----f20a9840e177---4</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/2fa" target="_blank">#2fa</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/cybersecurity" target="_blank">#cybersecurity</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/python" target="_blank">#python</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/programming" target="_blank">#programming</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/authentication" target="_blank">#authentication</a><br><br><a href="https://awakari.com/pub-msg.html?id=Cg1EU3j1SMeEFmP2RVViW9x1gaO" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
Brad Rubenstein “:verified:”<pre><code>Mothers maiden name: 5472615884<br>First car owned: 3656654851<br>Favorite color: 2580548933<br></code></pre><p>They get generated and stored in the password manager, for each account as needed.</p><p>The advantage of ten digit numbers is that they are easy to communicate to a customer service agent over the phone.</p><p>IME, no agent has ever batted an eye. It's not even lying. It's just being clear on the purpose.</p><p><span class="h-card" translate="no"><a href="https://mastodon.social/@marasawr" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>marasawr</span></a></span></p><p><a href="https://infosec.exchange/tags/Passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Passwords</span></a> <a href="https://infosec.exchange/tags/SecretQuestions" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SecretQuestions</span></a> <a href="https://infosec.exchange/tags/Authentication" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Authentication</span></a> <a href="https://infosec.exchange/tags/Privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Privacy</span></a></p>
2rZiKKbOU3nTafniR2qMMSE0gwZ‘Cloud Native Data Security with OAuth’ Breaks Down Zero-Trust API Design APIs are a double-e...<br><br><a href="https://nordicapis.com/cloud-native-data-security-with-oauth-breaks-down-zero-trust-api-design/" rel="nofollow noopener noreferrer" target="_blank">https://nordicapis.com/cloud-native-data-security-with-oauth-breaks-down-zero-trust-api-design/</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/blog" target="_blank">#blog</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Security" target="_blank">#Security</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Strategy" target="_blank">#Strategy</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Access" target="_blank">#Access</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Control" target="_blank">#Control</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/API" target="_blank">#API</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Security" target="_blank">#Security</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/APIs" target="_blank">#APIs</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/and" target="_blank">#and</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Data" target="_blank">#Data</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Authentication" target="_blank">#Authentication</a><br><br><a href="https://awakari.com/pub-msg.html?id=3xzlZlNUT2M3fJuu9c9sHRLYQYy" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
2rZiKKbOU3nTafniR2qMMSE0gwZBehind ‘Cloud Native Data Security with OAuth’: Highlights from the Authors We recently spent...<br><br><a href="https://nordicapis.com/behind-cloud-native-data-security-with-oauth-highlights-from-the-authors/" rel="nofollow noopener noreferrer" target="_blank">https://nordicapis.com/behind-cloud-native-data-security-with-oauth-highlights-from-the-authors/</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/blog" target="_blank">#blog</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Security" target="_blank">#Security</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/API" target="_blank">#API</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Design" target="_blank">#Design</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/API" target="_blank">#API</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Security" target="_blank">#Security</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Authentication" target="_blank">#Authentication</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Authorization" target="_blank">#Authorization</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Cybersecurity" target="_blank">#Cybersecurity</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/OAuth" target="_blank">#OAuth</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Zero-trust" target="_blank">#Zero-trust</a><br><br><a href="https://awakari.com/pub-msg.html?id=0HSfKp3diBySwBwX0VOz4MLRr3w" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
2rZiKKbOU3nTafniR2qMMSE0gwZNext.js Middleware Vulnerability Allows Authentication Bypass: Over 520K Assets at Risk On March ...<br><br><a href="https://blog.criminalip.io/2025/04/08/next-js-middleware-authentication-bypass-vulnerability/" rel="nofollow noopener noreferrer" target="_blank">https://blog.criminalip.io/2025/04/08/next-js-middleware-authentication-bypass-vulnerability/</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Blog" target="_blank">#Blog</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Cybersecurity" target="_blank">#Cybersecurity</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Report" target="_blank">#Report</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/User" target="_blank">#User</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/guide" target="_blank">#guide</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/CVE" target="_blank">#CVE</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/CVE-2025-29927" target="_blank">#CVE-2025-29927</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Middleware" target="_blank">#Middleware</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Authentication" target="_blank">#Authentication</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Bypass" target="_blank">#Bypass</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Vulnerability" target="_blank">#Vulnerability</a><br><br><a href="https://awakari.com/pub-msg.html?id=5b2Wv5BhenI10KdxXEKMPUPVCBE" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
2rZiKKbOU3nTafniR2qMMSE0gwZThe future of authentication: Why passwordless is the way forward By now, most CISOs agree: passw...<br><br><a href="https://www.helpnetsecurity.com/2025/04/16/passwordless-authentication-security/" rel="nofollow noopener noreferrer" target="_blank">https://www.helpnetsecurity.com/2025/04/16/passwordless-authentication-security/</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Don't" target="_blank">#Don't</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/miss" target="_blank">#miss</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/News" target="_blank">#News</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/authentication" target="_blank">#authentication</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/CISO" target="_blank">#CISO</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/cybersecurity" target="_blank">#cybersecurity</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/FIDO" target="_blank">#FIDO</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Alliance" target="_blank">#Alliance</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Okta" target="_blank">#Okta</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/passwordless" target="_blank">#passwordless</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/passwords" target="_blank">#passwords</a><br><br><a href="https://awakari.com/pub-msg.html?id=WYRoSRY1AKsXczpD7R09FYjEwFM" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
Pyrzout :vm:<p>The future of authentication: Why passwordless is the way forward <a href="https://www.helpnetsecurity.com/2025/04/16/passwordless-authentication-security/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">helpnetsecurity.com/2025/04/16</span><span class="invisible">/passwordless-authentication-security/</span></a> <a href="https://social.skynetcloud.site/tags/authentication" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>authentication</span></a> <a href="https://social.skynetcloud.site/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>cybersecurity</span></a> <a href="https://social.skynetcloud.site/tags/FIDOAlliance" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FIDOAlliance</span></a> <a href="https://social.skynetcloud.site/tags/passwordless" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwordless</span></a> <a href="https://social.skynetcloud.site/tags/Don" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Don</span></a>'tmiss <a href="https://social.skynetcloud.site/tags/passwords" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>passwords</span></a> <a href="https://social.skynetcloud.site/tags/Stytch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Stytch</span></a> <a href="https://social.skynetcloud.site/tags/Yubico" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Yubico</span></a> <a href="https://social.skynetcloud.site/tags/News" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>News</span></a> <a href="https://social.skynetcloud.site/tags/CISO" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CISO</span></a> <a href="https://social.skynetcloud.site/tags/Okta" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Okta</span></a></p>
2rZiKKbOU3nTafniR2qMMSE0gwZMicrosoft 365 Phishing Kit Just Got Harder To Detect Penka Hristovska Published on: April 15, 202...<br><br><a href="https://zephyrnet.com/microsoft-365-phishing-kit-just-got-harder-to-detect/" rel="nofollow noopener noreferrer" target="_blank">https://zephyrnet.com/microsoft-365-phishing-kit-just-got-harder-to-detect/</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Cyber" target="_blank">#Cyber</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Security" target="_blank">#Security</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/2" target="_blank">#2</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/2-factor" target="_blank">#2-factor</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Authentication" target="_blank">#Authentication</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/2025" target="_blank">#2025</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/365" target="_blank">#365</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/a" target="_blank">#a</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/access" target="_blank">#access</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Account" target="_blank">#Account</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Act" target="_blank">#Act</a><br><br><a href="https://awakari.com/pub-msg.html?id=Ylb0J6aozqGI0wA48YBuPj9C4XY" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
Linux-Maintainers<br><br><a href="http://www.9lessons.info/2022/10/pocketbase-hosting-on-apache-or-xampp.html" rel="nofollow noopener noreferrer" target="_blank">http://www.9lessons.info/2022/10/pocketbase-hosting-on-apache-or-xampp.html</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/apache" target="_blank">#apache</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Authentication" target="_blank">#Authentication</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Database" target="_blank">#Database</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Hosting" target="_blank">#Hosting</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/pocketbase" target="_blank">#pocketbase</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/realtime" target="_blank">#realtime</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/xampp" target="_blank">#xampp</a><br><br><a href="https://awakari.com/pub-msg.html?id=BPQtKpcQuiewzYvG3ESmgFdJlBY" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
Frontend Dogma<p>Secure a Vue App With OpenID Connect and the BFF Pattern, by @duendesoftware.com:</p><p><a href="https://blog.duendesoftware.com/posts/20250409-secure-vue-app-with-openid-connect-bff-pattern/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">blog.duendesoftware.com/posts/</span><span class="invisible">20250409-secure-vue-app-with-openid-connect-bff-pattern/</span></a></p><p><a href="https://mas.to/tags/vuejs" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>vuejs</span></a> <a href="https://mas.to/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>security</span></a> <a href="https://mas.to/tags/authentication" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>authentication</span></a></p>
2rZiKKbOU3nTafniR2qMMSE0gwZHID redefines secure authentication with new OMNIKEY® SE Plug Sleek and compact RFID reader conv...<br><br><a href="https://www.tahawultech.com/news/hid-redefines-secure-authentication-with-new-omnikey-se-plug/" rel="nofollow noopener noreferrer" target="_blank">https://www.tahawultech.com/news/hid-redefines-secure-authentication-with-new-omnikey-se-plug/</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/News" target="_blank">#News</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Technology" target="_blank">#Technology</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Vendor" target="_blank">#Vendor</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/HiD" target="_blank">#HiD</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/OMNIKEY®" target="_blank">#OMNIKEY®</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/SE" target="_blank">#SE</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Plug" target="_blank">#Plug</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Secure" target="_blank">#Secure</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Authentication" target="_blank">#Authentication</a><br><br><a href="https://awakari.com/pub-msg.html?id=30UwtmGTzgcmRYaXQQshX9BzIoq" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
2rZiKKbOU3nTafniR2qMMSE0gwZAuthentication vs. Authorization: Understanding the Pillars of Identity Security Authentication a...<br><br><a href="https://securityboulevard.com/2025/04/authentication-vs-authorization-understanding-the-pillars-of-identity-security/?utm_source=rss&utm_medium=rss&utm_campaign=authentication-vs-authorization-understanding-the-pillars-of-identity-security" rel="nofollow noopener noreferrer" target="_blank">https://securityboulevard.com/2025/04/authentication-vs-authorization-understanding-the-pillars-of-identity-security/?utm_source=rss&utm_medium=rss&utm_campaign=authentication-vs-authorization-understanding-the-pillars-of-identity-security</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Identity" target="_blank">#Identity</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/&" target="_blank">#&</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Access" target="_blank">#Access</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Security" target="_blank">#Security</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Bloggers" target="_blank">#Bloggers</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Network" target="_blank">#Network</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Authentication" target="_blank">#Authentication</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/authorization" target="_blank">#authorization</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/B2C" target="_blank">#B2C</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Cybersecurity" target="_blank">#Cybersecurity</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/passwordless" target="_blank">#passwordless</a><br><br><a href="https://awakari.com/pub-msg.html?id=BRsF9XbridQXiBDGb085B1dsqYK" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
2rZiKKbOU3nTafniR2qMMSE0gwZCISA Warns of CrushFTP Exploit Letting Attackers Bypass Authentication The Cybersecurity and Infr...<br><br><a href="https://thecyberexpress.com/cisa-adds-cve-2025-31161-to-kev-catalog/" rel="nofollow noopener noreferrer" target="_blank">https://thecyberexpress.com/cisa-adds-cve-2025-31161-to-kev-catalog/</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Firewall" target="_blank">#Firewall</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Daily" target="_blank">#Daily</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Cyber" target="_blank">#Cyber</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/News" target="_blank">#News</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Vulnerabilities" target="_blank">#Vulnerabilities</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/authentication" target="_blank">#authentication</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/bypass" target="_blank">#bypass</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/CrushFTP" target="_blank">#CrushFTP</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/CVE-2025-31161" target="_blank">#CVE-2025-31161</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/The" target="_blank">#The</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Cyber" target="_blank">#Cyber</a><br><br><a href="https://awakari.com/pub-msg.html?id=9H6kovHcEYX3je7P90htBf7hQI4" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
2rZiKKbOU3nTafniR2qMMSE0gwZCISA Warns of CrushFTP Exploit Letting Attackers Bypass Authentication The Cybersecurity and Infr...<br><br><a href="https://thecyberexpress.com/cisa-adds-cve-2025-31161-to-kev-catalog/" rel="nofollow noopener noreferrer" target="_blank">https://thecyberexpress.com/cisa-adds-cve-2025-31161-to-kev-catalog/</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Firewall" target="_blank">#Firewall</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Daily" target="_blank">#Daily</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Cyber" target="_blank">#Cyber</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/News" target="_blank">#News</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Vulnerabilities" target="_blank">#Vulnerabilities</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/authentication" target="_blank">#authentication</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/bypass" target="_blank">#bypass</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/CrushFTP" target="_blank">#CrushFTP</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/CVE-2025-31161" target="_blank">#CVE-2025-31161</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/The" target="_blank">#The</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Cyber" target="_blank">#Cyber</a><br><br><a href="https://awakari.com/pub-msg.html?id=HrZ2i6walfeoRdK74YcikMs958a" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
2rZiKKbOU3nTafniR2qMMSE0gwZZero Trust in Action: Identity and Access Management with Windows 11 Imagine logging into your wo...<br><br><a href="https://blog.synergyit.ca/identity-and-access-management-with-windows-11/" rel="nofollow noopener noreferrer" target="_blank">https://blog.synergyit.ca/identity-and-access-management-with-windows-11/</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Cyber" target="_blank">#Cyber</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Security" target="_blank">#Security</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Windows" target="_blank">#Windows</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/11" target="_blank">#11</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Azure" target="_blank">#Azure</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/AD" target="_blank">#AD</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/authentication" target="_blank">#authentication</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/BitLocker" target="_blank">#BitLocker</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Windows" target="_blank">#Windows</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/11" target="_blank">#11</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Conditional" target="_blank">#Conditional</a><br><br><a href="https://awakari.com/pub-msg.html?id=LD2CdZDF0t2NT1gPbcv5ZJsVdwG" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
2rZiKKbOU3nTafniR2qMMSE0gwZZero Trust in Action: Identity and Access Management with Windows 11 Imagine logging into your wo...<br><br><a href="https://blog.synergyit.ca/zero-trust-in-action-identity-and-access-management-with-windows-11/" rel="nofollow noopener noreferrer" target="_blank">https://blog.synergyit.ca/zero-trust-in-action-identity-and-access-management-with-windows-11/</a><br><br><a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Cyber" target="_blank">#Cyber</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Security" target="_blank">#Security</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Windows" target="_blank">#Windows</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/11" target="_blank">#11</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Azure" target="_blank">#Azure</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/AD" target="_blank">#AD</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/authentication" target="_blank">#authentication</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/BitLocker" target="_blank">#BitLocker</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Windows" target="_blank">#Windows</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/11" target="_blank">#11</a> <a rel="nofollow noopener noreferrer" class="mention hashtag" href="https://mastodon.social/tags/Conditional" target="_blank">#Conditional</a><br><br><a href="https://awakari.com/pub-msg.html?id=SIA3XmXLBPUMnU7Na1lE1igJjZA" rel="nofollow noopener noreferrer" target="_blank">Event Attributes</a>
Habr<p>Атаки через новый OAuth flow, authorization code injection, и помогут ли HttpOnly, PKCE и BFF</p><p>В статье детально рассмотрим интересный вектор атаки на приложения, использующие OAuth/OIDC, разберем, какие предусловия для этого нужны, и увидим, что они не так недостижимы, как может показаться на первый взгляд. Затронем использование паттерна Backend-for-Frontend и способы реализации PKCE для confidential clients, попутно проверив, помогают ли они защититься от рассматриваемой атаки. Взглянем и на другие существующие рекомендации и предлагаемые лучшие практики, а также подумаем над прочими мерами защиты, которые действительно могут помочь. Все это с примерами, схемами и даже видео. Материал будет интересен как для занимающихся разработкой приложений, так и для представляющих атакующую сторону.</p><p><a href="https://habr.com/ru/articles/880544/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">habr.com/ru/articles/880544/</span><span class="invisible"></span></a></p><p><a href="https://zhub.link/tags/%D0%B0%D1%83%D1%82%D0%B5%D0%BD%D1%82%D0%B8%D1%84%D0%B8%D0%BA%D0%B0%D1%86%D0%B8%D1%8F" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>аутентификация</span></a> <a href="https://zhub.link/tags/authentication" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>authentication</span></a> <a href="https://zhub.link/tags/pkce" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pkce</span></a> <a href="https://zhub.link/tags/backendforfrontend" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>backendforfrontend</span></a> <a href="https://zhub.link/tags/bff" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>bff</span></a> <a href="https://zhub.link/tags/authorization_code_injection" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>authorization_code_injection</span></a> <a href="https://zhub.link/tags/confidential_clients" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>confidential_clients</span></a> <a href="https://zhub.link/tags/%D1%82%D0%BE%D0%BA%D0%B5%D0%BD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>токен</span></a> <a href="https://zhub.link/tags/session_id" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>session_id</span></a> <a href="https://zhub.link/tags/httponly" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>httponly</span></a></p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload