![]() The team at VPNMentor said the since-patched security hole had left as many as 685 million netizens vulnerable to cross-site-scripting attacks, during which hackers attempt to steal data and hijack accounts. After discovering a subdomain – specifically, go. – that had a cross-site scripting flaw, they got in touch with the hookup app's makers to file a bug report.Īs it turned out, the vulnerability they discovered went far beyond one subdomain on a site for lonely hearts. The software sniffers said they first came across the exploitable programming blunder while digging into webpage code on dating websites. Bug-hunters have told how they uncovered a significant security flaw that affected the likes of Tinder, Yelp, Shopify, and Western Union – and potentially hundreds of millions of folks using these sites and apps.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |