We just received multiple "google doc shares" that seemed sketchy and were not sent by the claimed sender.
They came from different companies that have no connection to each other, I assume others are seeing them too right about now. Anyone know whats up?
> "We're deploying some abuse detection and reactive measures to deal with impostors that might try to abuse this sort of attack. Given this, we do not intend to perform validation that the URL matches the branding information."
That last part was in reference to one of my proposed mitigations, which they chose not to implement.
Here's the discussion on the IETF OAuth WG mailing list from that same time period: https://www.ietf.org/mail-archive/web/oauth/current/msg07625...