Interesting start of the afternoon. Twitter has been hit by an XSS exploit which makes use of Javascript mouseover function in a browser, so that every time people browsed over a tweet, it opened a screen, sent an RT which propagated the vulnerability. The purpose was spam, the browser would try to open a pop-up linking to a Japanese porn website.

The attack as it happened

This looks very bad for Twitter in my opinion, but it also serves to stress just how vulnerable the web can be. Thankfully, the exploit was plugged immediately, but if I were a betting man, I would guess that other hackers will try to find similar exploits in the near future.

I just had to finish this post with a bleeding obvious statement, it’s been a while since I made one of those.


1 Comment

Avatar

famoso_restaurant · October 14, 2010 at 10:41 am

"Folly loves the martyrdom of Fame."

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.