Google Developers Blog: Guidance to developers affected by our effort to block less secure browsers and applications

Web programming qustions, like PHP, ASP, ASP .NET, Perl etc. belong in this section.
Post Reply
Accrete
Administrator
Posts: 1307
Joined: Fri Nov 08, 2019 12:44 am
Latest blog post: Have You Read the Webmaster Guidelines Yourself?
Answers: 1
Reputation: 793
Location: Canada
Has thanked: 22 times
Been thanked: 109 times
Contact:

Google Developers Blog: Guidance to developers affected by our effort to block less secure browsers and applications

Post by Accrete »

Well this is already a PIA as a user. Microsoft detecting this already and sending links to Edge.
We are always working to improve security protections of Google accounts. Our security systems automatically detect, alert and help protect our users against a range of security threats. One form of phishing, known as “man-in-the-middle”, is hard to detect when an embedded browser framework (e.g., Chromium Embedded Framework - CEF) or another automation platform is being used for authentication. MITM presents an authentication flow on these platforms and intercepts the communications between a user and Google to gather the user’s credentials (including the second factor in some cases) and sign in. To protect our users from these types of attacks Google Account sign-ins from all embedded frameworks will be blocked starting on January 4, 2021. This block affects CEF-based apps and other non-supported browsers.

To minimize the disruption of service to our partners, we are providing this information to help developers set up OAuth 2.0 flows in supported user-agents.
Continued: Guidance to developers affected by our effort to block less secure browsers and applications
Friday, August 28, 2020


Yours truly,
Accrete Web Solutions

SEO troubleshooting and review services available. - Pm me.
Post Reply

Return to “Web Programming”

Who is online

Users browsing this forum: No members and 6 guests