A new Twitter security flaw has been widely exploited on thousands of Twitter accounts, this was due to a new Javascript exploit that is currently spreading like wildfire across Twitter service. The bug is particularly nasty because it works on mouse-over only. that means pop-ups and third party website can open even if you just move your mouse over the offending link.
JavaScript function called onMouseOver is behind this flaw, which creates an event when the mouse is passed over a chunk of text. For who are using third party twitter apps, they are safe from the bug.
Update 1: Few minutes ago twitter has mentioned fixing of this bug.
We’ve identified and are patching a XSS attack; as always, please message @safety if you have info regarding such an exploit.
[via mashable]
You may also like:
- New Twitter Web Interface, Really AWESOME.
- Download Official Twitter App for iPad.
- Twitter Surpasses 145 Million Registered Users