XSS Exploit that steals Yahoo Mail Cookies Sold for $700

An Egyptian hacker has found a zero-day XSS exploit within the Yahoo! Messenger list. The exploit manages to access cookies set by Yahoo and send them to the attacker. Once the attacker has the cookies and the username, they can successfully access the respective account by tricking the browser into thinking that authentication had already been done and the victim account is logged in. Don`t believe that the exploit will be used by the buyer just to play a couple of innocent pranks on YIM contacts.”]

Source: https://www.bitdefender.com/blog/hotforsecurity/xss-exploit-that-steals-yahoo-mail-cookies-sold-for-700/

Something Fresh

Zip Codes & PII: Are They Personal Data?

ZeroNet: 51% Attack Risks & Mitigation

Zero Knowledge Voting with Trusted Server

What People Reading

YubiKey Security: Initial Setup with Yubi Cloud

Zero-Day Vulnerabilities: User Defence Guide

Feedback and data-driven updates to Googles disclosure policy

ZAP: Brute Force Passwords

Security Insider Interview Series: John McArthur, Senior Product Manager, IP Intelligence; and Rupert Young, Senior Director Software Engineering, Data Compilation and Identity, Neustar

Categories

Partners

Just add here your partners image or promo text