Hackers are exploiting OAuth loophole for persistent access - and resetting your password won't save you

Read post on techradar.com

These fully automated attacks let hackers retain serious access to OAuth apps.