Twitter vulnerable to XSS worm attack

Author: Ryan Naraine

March 20, 2009 8:53 pm

By Robert McMillan, ComputerWorld

Computer security researchers have devised a new Twitter attack that they say could spread virally, much like a worm on the microblogging service.
The attack, publicized by researchers at Secure Science, is an innocuous proof-of-concept that forces users to send out a predetermined Twitter message, but it could be repurposed into a very nasty worm, said Lance James, chief scientist at Secure Science.
“You can couple an attack with our code and it would just tear the crap out of Twitter,” he said.
Read the full article [computerworld.com] Here’s the proof-of-concept code [securescience.net].

By Robert McMillan, ComputerWorld

Computer security researchers have devised a new Twitter attack that they say could spread virally, much like a worm on the microblogging service.

The attack, publicized by researchers at Secure Science, is an innocuous proof-of-concept that forces users to send out a predetermined Twitter message, but it could be repurposed into a very nasty worm, said Lance James, chief scientist at Secure Science.

“You can couple an attack with our code and it would just tear the crap out of Twitter,” he said.

Read the full article [computerworld.com] Here’s the proof-of-concept code [securescience.net].