Sections

 

 
Newsletter
Email:

 
RESOURCE SITES






Home | Technology | Massive Twitter Security Problem Not Resolved Just Yet

Massive Twitter Security Problem Not Resolved Just Yet

Font size: Decrease font Enlarge font
Robin Wauters (TechCrunch) 26 August, 2009 12:25:00
image

Yesterday UK-based SEO specialist Dave Naylor made headlines by detailing a significant Twitter cross-site scripting vulnerability, which allowed him to insert JavaScript code into tweets simply by adding some code to the field where an application developer would normally link to a product website.

(TechCrunch) There are all sorts of malicious things people could have done to exploit the bug, like steal session cookies, create a Twitter worm or even infect unaware visitors with malware, so it’s safe to say this was a massive security threat.

Sure enough, when word got out Twitter moved to patch the bug to prevent such bad stuff from happening. John Adams from Twitter Operations even commented on Naylor’s blog to point out the hole had been closed shortly after he published his post.

Well, not quite. ...Go to source




Comments (0 posted):

Post your comment comment
Please enter the code you see in the image:
  • email Email to a friend
  • print Print version
  • Plain text Plain text

 
Tags
No tags for this article

 
Rate this article
0

 
Featured author
David Dunlap David Dunlap has been both a Web host industry analyst and commentator for the past eight years. Prior to his active writing career, David was a network and communications technician for four years. He currently is the Editor-in-Chief for WebHostMagazine.com