You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Document how Solid-OIDC can be vulnerable to phishing attacks where attackers create malicious applications or fake login pages to capture user credentials. For example, users might be redirected to a fake IdP that mimics a legitimate one, tricking them into entering their credentials.
Some remediations might involve some way of verifying the legitimacy/integrity of the redirect URIs or requiring MFA.
The text was updated successfully, but these errors were encountered:
Document how Solid-OIDC can be vulnerable to phishing attacks where attackers create malicious applications or fake login pages to capture user credentials. For example, users might be redirected to a fake IdP that mimics a legitimate one, tricking them into entering their credentials.
Some remediations might involve some way of verifying the legitimacy/integrity of the redirect URIs or requiring MFA.
The text was updated successfully, but these errors were encountered: