Stories about: Authentication Cookie

XSS Attack on Twitter Subdomain Allowed for Complete Session Hijacking A Google security researcher has found a security hole on a Twitter subdomain which facilitated session hijacking attacks. The compromise was possible because of a too broad domain scope used for the session cookie.The flaw was discovered and documented on his blog by Google Security Engineer Billy Rios. Rios previou...	20 July 2010 05:41 GMT

Phishing Attack Uses Yahoo HotJobs XSS Vulnerability Netcraft, a British company that offers Internet and security services, announced that a phishing attack was compromising Yahoo accounts. According to the company, the attack was using obfuscated JavaScript code injected in the hotjobs.yahoo.com website in order to gather authentication cookies from users accessing t...	28 October 2008 05:54 GMT

SUBMIT PROGRAM \| ADVERTISE \| GET HELP \| SEND US FEEDBACK \| RSS FEEDS \| UPDATE YOUR SOFTWARE \| ROMANIAN FORUM
© 2001 - 2012 Softpedia. All rights reserved. Softpedia® and the Softpedia® logo are registered trademarks of SoftNews NET SRL.	Copyright Information \| Privacy Policy \| Terms of Use

XSS Attack on Twitter Subdomain Allowed for Complete Session Hijacking