How StalkDaily Opened a Gaping Hole in Twitter

By secgeeks - Posted on April 13th, 2009

241

vote

Today one of our favorite sites, Twitter (Twitter reviews), was hit with a particularly nasty exploit: one that could infect users simply by visiting a friend’s profile on Twitter.com.

The nature of the attack was far more serious than previous exploits, since there was no need to click a link to get infected. We’re hopeful, however, that Twitter will move quickly to prevent this form of cross site scripting (XSS) attack. In the meantime, we’ve looked into how the attack was executed, and how you can avoid it.
Continue reading here....

Bookmark/Search this post with:

Similar entries

Recent blog posts

Newly Popular

Drupalit monthly

Drupalit weekly

Drupalit daily

Drupalit hottest

Drupalit latest

Recent comments

Problem solved!!!!
30 weeks 5 days ago
New version here
33 weeks 2 days ago
thanks for sharing.
1 year 2 weeks ago
links
1 year 2 weeks ago
Link to preplay
1 year 2 weeks ago
so now you are on linkedin
1 year 18 weeks ago
Outlook Email search tool
1 year 34 weeks ago
nice tool..
2 years 25 weeks ago
Preplay for windows
2 years 26 weeks ago
yeah,foxit is god
2 years 28 weeks ago

Get SecGeeks Feeds in your email:

Navigation

Who's online

There are currently 1 user and 3 guests online.

Online users

secgeeks

BlogRoll

Hack In The Box

http://maltainfosec.org
http://sipvicious.org/blog/
astalavista.com
Fake antivirus removal instructions

Partners

www.techmantras.com
Play Free Bingo at WikiBingo.co.uk
Find the latest Scratch Cards Games
Play bingo with no commitment-bingo winner.
Rent Sell Property
Post your Classified Ads for free
add your link here..