Slashdot Mirror

← Back to Stories (view on slashdot.org)

Twitter Suffers Web Interface Exploit

Posted by CmdrTaco on Tuesday September 21, 2010 @01:30AM from the they-meant-to-tweet-that dept.

HaloZero writes "We're seeing lots of re-tweets on Twitter.com right now, all containing a fragment of JavaScript, which re-tweets itself when moused-over on the Twitter web interface. This could easily be muted into a more sinister attack, so it is recommended that you use a third party client application, or refrain from social media altogether until the problem is resolved."

3 of 165 comments (clear)

Min score:

Reason:

Sort:

Oh really? Refrain from what? by mr_mischief · 2010-09-21 01:44 · Score: 0, Flamebait

refrain from social media altogether until the problem is resolved
Sorry, I didn't realize Twatter was "social media altogether". Sorry, Slashdot, you just admitted on your front page you are irrelevant. Only Twitter counts.
Re:Again? by Kristopeit,MichaelDa · 2010-09-21 02:19 · Score: 0, Flamebait

yes, but NEW SERVICES UTILIZING "core HTML/JavaScript" have their own syntax and internal interfaces... such as the t.co service EXPLOITED IN THIS CASE.
you are so dumb.
emphasizing sanitizing output allows you to keep the users originally provided input for reference. if you've never needed such a reference i'd argue you probably don't do this for a living.
Re:Obligatory xkcd by Jello+B. · 2010-09-21 02:28 · Score: 0, Flamebait

It's not obligatory. Suck dick.