![\"3rdxparty\"](\"\/huntsville-al\/wp-content\/uploads\/sites\/13\/2016\/12\/3rdXParty.jpg\")
\nIf you own your own business, then odds are good that you\u2019ve taken advantage of the \u201cSign in With Facebook\u201d (or Google) API. It\u2019s fast, it\u2019s convenient and it\u2019s one less thing to worry about.<\/p>\n
\nIf you own your own business, then odds are good that you\u2019ve taken advantage of the \u201cSign in With Facebook\u201d (or Google) API. It\u2019s fast, it\u2019s convenient and it\u2019s one less thing to worry about.<\/p>\n
It gives your users an automatic way to sign onto your site, meaning that they don\u2019t have yet another password to keep track of. That\u2019s win-win, right?<\/p>\n
It would be, except for the fact that the technology is often misused or incorrectly applied, leaving the door open for the hackers, and making it easy to intercept password information. If that happens, the convenience of using Facebook or Google\u2019s sign-in API works against you.<\/p>\n
Security professionals have been shouting from the mountain tops for months about how dangerous it is to use the same password across multiple accounts. While it takes on a slightly different form, that\u2019s exactly what a Google\/Facebook sign in is, and once the hackers have your Facebook password, they can get into a number of other sites you use.<\/p>\n
The attack is accomplished via a \u201cman in the middle\u201d approach that allows hackers to sign into a victim\u2019s app using their own credentials.<\/p>\n
Once logged in, the hackers can make use of any site the user logs onto via Facebook or Google. If you\u2019ve linked your banking information to those sites, then the hackers will have access to those accounts. They can go shopping, book a vacation and basically do anything you would normally do when you sign onto those sites legitimately.<\/p>\n
In a recent survey of the top 600 US and Chinese mobile aps, it was found that more than 40% (41.2%) can easily be compromised in just this fashion.<\/p>\n
The level of exposure is staggering. This could impact more than a billion mobile devices, worldwide.<\/p>\n
If you make use of Facebook and\/or Google\u2019s sign-in API in the conduct of your business, it\u2019s time to do a review. You may be putting your clients at risk without realizing it.<\/p>\n","protected":false},"excerpt":{"rendered":"
If you own your own business, then odds are good that you\u2019ve taken advantage of the \u201cSign in With Facebook\u201d (or Google) API. It\u2019s fast, it\u2019s convenient and it\u2019s one less thing to worry about. It gives your users an automatic way to sign onto your site, meaning that they don\u2019t have yet another password […]<\/p>\n","protected":false},"author":15,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-931","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"acf":[],"yoast_head":"\n