<p>What if an GPC project OAUTH access token wasn’t deleted? This could expose databases to bad actors. Tal Skverer from Astrix discusses his <a href='https://defcon.org/'>DEF CON 31</a> presentation <a href='https://forum.defcon.org/node/245707'>GhostToken: Exploiting Google Cloud Platform App Infrastructure to Create Unremovable Trojan Apps</a>. Transcript <a href='https://www.mayhem.security/blog/the-hacker-mind-podcast-ghost-token?utm_source=thehackermind&utm_medium=podcast&utm_campaign=mayhembrand'>here</a>.</p>

What if an GPC project OAUTH access token wasn’t deleted? This could expose databases to bad actors. Tal Skverer from Astrix discusses his DEF CON 31 presentation GhostToken: Exploiting Google Cloud Platform App Infrastructure to Create Unremovable Trojan Apps. Transcript here.

<p>What if an GPC project OAUTH access token wasn’t deleted? This could expose databases to bad actors. Tal Skverer from Astrix discusses his <a href="https://defcon.org/" rel="noopener noreferrer">DEF CON 31</a> presentation <a href="https://forum.defcon.org/node/245707" rel="noopener noreferrer">GhostToken: Exploiting Google Cloud Platform App Infrastructure to Create Unremovable Trojan Apps</a>. Transcript <a href="https://www.mayhem.security/blog/the-hacker-mind-podcast-ghost-token?utm_source=thehackermind&amp;utm_medium=podcast&amp;utm_campaign=mayhembrand" rel="noopener noreferrer">here</a>.</p>

EP 80: Ghost Token

The Hacker Mind is an original podcast from the makers of Mayhem Security. It’s the stories from the individuals behind the hacks you’ve read about. It’s about meeting some of the security challenges in software through advanced techniques such as fuzz testing. It’s a view of the hackers and their world that you may not have heard before.

Share EP 80: Ghost Token

Sign up to save your podcasts

EP 80: Ghost Token

EP 80: Ghost Token