ConsentFix debrief: Insights from the new OAuth phishing attack

ConsentFix is an OAuth phishing technique abusing browser-based authorization flows to hijack Microsoft accounts. Push ...

Facebook login thieves now using browser-in-browser trick

Hackers over the past six months have relied increasingly more on the browser-in-the-browser (BitB) method to trick users into providing Facebook account credentials.

Heading out to protest? Disable your phone's biometrics, and 6 more ways to protect your privacy

Smartphones are powerful tools for demonstrators, but bringing yours along does come with risks. Here are our top tips for staying safe.