November 29, 2023
Cybersecurity researchers have detailed a “severe design flaw” in Google Workspace’s domain-wide delegation (DWD) feature that could be exploited by threat actors to facilitate privilege escalation and obtain unauthorized access to Workspace APIs without super admin privileges.
“Such exploitation could result in theft of emails from Gmail, data exfiltration from Google Drive, or other
“Such exploitation could result in theft of emails from Gmail, data exfiltration from Google Drive, or other
Article posted by: https://thehackernews.com/2023/11/design-flaw-in-google-workspace-could.html
——————————————————————————————————————–
Infocerts, 5B 306 Riverside Greens, Panvel, Raigad 410206 Maharashtra, India
Contact us – https://www.infocerts.com
