1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Microsoft Pays $13,000 to Hacker for Finding Authentication Flaw

Discussion in 'The Hacker News' started by RSS, Apr 4, 2016.

  1. RSS

    RSS New Member Member

    A security researcher has won $13,000 bounty from Microsoft for finding a critical flaw in its main authentication system that could allow hackers to gain access to a user's Outlook, Azure and Office accounts. The vulnerability has been uncovered by UK-based security consultant Jack Whitton and is similar to Microsoft's OAuth CSRF (Cross-Site Request Forgery) in Live.com discovered by
    [​IMG]
    [​IMG]

    Continue reading...
     

Share This Page