Slashdot Mirror

← Back to Stories (view on slashdot.org)

TweetDeck Hacked

Posted by samzenpus on from the have-a-heart dept.

redletterdave (2493036) writes TweetDeck, Twitter's tool for real-time tracking and engagement of posts, was found to be vulnerable to cross-site scripting (XSS), a type of computer vulnerability commonly found in web applications that allows hackers to inject script into webpages to access user accounts and important security information. As a result of the hack, a tweet with an emoticon heart is being shared more than 38,000 times — automatically.

5 of 19 comments (clear)

  1. Hmmm. by SeaFox · · Score: 4, Funny

    Yet another security venerability involving hearts I see.

  2. Not really a hack by hsmith · · Score: 2

    More like exploited. Failure to escape content, which you should have been doing for the last 15 years, is hardly hacking.

    1. Re:Not really a hack by chrylis · · Score: 4, Interesting

      The code that I saw, which basically reached out of its container and hit the "retweet" button on itself, was definitely a clever hack.

    2. Re:Not really a hack by Hsien-Ko · · Score: 3, Insightful

      Gizmodo and aren't hacks can't belong in the same sentence.

  3. Next headline: by geekoid · · Score: 2

    everything everywhere has been hacked. Deal with it.

    --
    The Kruger Dunning explains most post on /. http://en.wikipedia.org/wiki/Dunning%E2%80%93Kruger_effect