views
New Delhi: Another security flaw has hit the popular microblogging website Twitter. The bug on the Twitter website caused pop-up messages to appear or opened third-party websites when users just hovered the cursor over a link.
The latest Twitter security exploit took advantage of the onMouseOver javascript code on the website, but it didn't appear to affect the third-party Twitter clients that many use to keep track of tweets. Even the new Twitter interface, rolled out last week and currently available to only select users, did not seem to be bitten by the mouseover bug.
Experts had advised users to stay away from the Twitter website and use other Twitter clients instead.
According to reports the bug was widely exploited by users, many of whom used it for fun but the possibility of cybercriminals taking advantage of the flaw has not been ruled out.
The twitterverse was also abuzz with "onmouseover" and "mouseover" tweets, with both the terms featuring amongst the top trending topics.
Twitter, much later, issued a statement on the official Twitter Safety account confirming that they had identified and patched the XSS (cross-site scripting) attack.
Comments
0 comment