rispost

Hackers with their hand in the cookie jar

October 29th, 2010

HTTP cookies were never intended to be invasions of privacy. They were simply markers used by website developers to make users’ lives easier, by storing regularly-entered information or past history on the site. As always, though, the road to hell is paved with good intentions, and in this case it’s easy to see how stored user information could lead to problems.One of the problems with cookies is that they can be tied to user’s public profiles online at social networking sites. Another is that users are not informed when a cookie is stored. Hackers have come up with ways to access these cookies, which the user is unaware of, through cross-site scripting attacks. These attacks inject malicious code into web pages in order to bypass the intended security controls. (more…)

© NR Lab , Designed by Stealth Settings
Entries (RSS) and Comments (RSS)