CSOonline

Booking.com account takeover flaw shows possible pitfalls in OAuth implementations

Booking.com, one of the world’s largest online travel agencies, recently patched a vulnerability in its implementation of the OAuth protocol that could have allowed attackers to gain access to ...
Infosecurity-magazine.com

API Security Flaw Found in Booking.com Allowed Full Account Takeover

Several security flaws have been found in the implementation of the Open Authorization (OAuth) social-login feature used by the online travel agency Booking.com. The vulnerabilities discovered by Salt ...
Skift

Booking.com Is Expanding Beyond Hotels and Into Flights, Cars and Restaurants

Photo Credit: Hotel-site Booking.com recently added flights, car rentals, and dining reservations to its homepage in an effort to capture more business across all of its parent company's various ...