Twitter vulnerable to XSS worm attack

By Robert McMillan, ComputerWorld

Computer security researchers have devised a new Twitter attack that they say could spread virally, much like a worm on the microblogging service.
The attack, publicized by researchers at Secure Science, is an innocuous proof-of-concept that forces users to send out a predetermined Twitter message, but it could be repurposed into a very nasty worm, said Lance James, chief scientist at Secure Science.
“You can couple an attack with our code and it would just tear the crap out of Twitter,” he said.
Read the full article [computerworld.com]  Here’s the proof-of-concept code [securescience.net].

By Robert McMillan, ComputerWorld

Computer security researchers have devised a new Twitter attack that they say could spread virally, much like a worm on the microblogging service.

The attack, publicized by researchers at Secure Science, is an innocuous proof-of-concept that forces users to send out a predetermined Twitter message, but it could be repurposed into a very nasty worm, said Lance James, chief scientist at Secure Science.

“You can couple an attack with our code and it would just tear the crap out of Twitter,” he said.

Read the full article [computerworld.com]  Here’s the proof-of-concept code [securescience.net].

 

Suggested articles

Discussion

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.