Security News OAuth Redirect Flaw in Airline Travel Integration Exposes Millions to Account Hijacking TheHackerNews Daniel Bender Jan 28, 2025 API vulnerability in airline-linked travel service exposed millions to account takeovers, booking fraud, and data theft through OAuth flaws.