Hacker Newsnew | past | comments | ask | show | jobs | submit | ethanblake4's commentslogin

All of the major carriers use Google Jibe as their RCS backend anyway though, so it's pretty irrelevant.


Author here, the exact same thing that I did is possible for any 3rd party SSO on mobile apps. It's not a Google exploit, it's an exploit in the idea of SSO.


I only had to click 'allow device' because I had 2FA enabled on that account. For anyone who doesn't, that step is not required.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: