A Twitter user has demonstrated a cross-site scripting (XSS) vulnerability on the microblogging platform that could allow an attacker to take over users accounts or spread malware. Researchers have spotted notable code overlap between the Sunburst backdoor and a known Turla weapon. Researchers at Recorded Future report a rise in cracked Cobalt Strike and other open-source adversarial tools with easy-to-use interfaces. Read the full article ve demonstrated a Twitter user demonstrated a XSS vulnerability.
Source: https://threatpost.com/xss-flaw-found-twitter-062510/74145/