Hey, if you're a journalist getting hit with random Google Doc invites right now, do not click. Forward phishing attacks to cooperq@eff.org
-
-
Not really much else we can do, changing your password and adding 2FA is going to have zero impact on this attack
-
Important to revoke access to the OAuth app. Attacker can continue to exploit accounts as long as they have valid access tokens.
Fin de la conversation
Nouvelle conversation -
-
-
won't they just start using Unicode characters to name themselves things like "Goȯgle Docs"
-
Yeah, but google already polices for stuff like that on the domain level so.... this IS google we're talking about
-
If anyone's equipped to deal with endless waves of unending bullshit it's going to be google
- Fin de la conversation
Nouvelle conversation -
-
-
Google really needs to improve the sign-in form to show difference between oauth and normal login:https://twitter.com/0b10011/status/859852104583831554 …
-
Be sure to go to https://myaccount.google.com/permissions to make sure there aren't any apps you don't recognize. If there is, click it and click "Remove".
Fin de la conversation
Nouvelle conversation -
Le chargement semble prendre du temps.
Twitter est peut-être en surcapacité ou rencontre momentanément un incident. Réessayez ou rendez-vous sur la page Twitter Status pour plus d'informations.