Twitter exploit cripples website

Interesting start of the afternoon. Twitter has been hit by an XSS exploit which makes use of Javascript mouseover function in a browser, so that every time people browsed over a tweet, it opened a screen, sent an RT which propagated the vulnerability. The purpose was spam, the browser would try to open a pop-up linking to a Japanese porn website.

The attack as it happened

This looks very bad for Twitter in my opinion, but it also serves to stress just how vulnerable the web can be. Thankfully, the exploit was plugged immediately, but if I were a betting man, I would guess that other hackers will try to find similar exploits in the near future.

I just had to finish this post with a bleeding obvious statement, it’s been a while since I made one of those.

Comments 1

Leave a Reply