Microsoft Latest Security Risk: 'Cookiejacking'

Friday May 27th 2011 by Staff

A flaw in Internet Explorer could allow hackers to steal login credentials.

Reuters: Independent security researcher Rosario Valotta says that he has found a flaw in Microsoft's Internet Explorer Web browser that could allow hackers to steal users login credentials for various websites. He calls the technique "cookiejacking."

In order to make the technique work, the hacker has to convince a user to drag and drop an object across the screen on a website where they are currently logged in. Valotta demonstrated his technique by posting an app on Facebook, but Microsoft says there is little risk that a real cookiejacking scam would work.

Mobile Site | Full Site
Copyright 2017 © QuinStreet Inc. All Rights Reserved