A new exploit being sold for $700 may put tens of millions of Yahoo Mail users at risk. Once victims click on a malicious email link, the exploit allows an attacker to steal and replace tracking cookies, while remotely controlling the victims’ browsing sessions. “After the victim clicks the link, he will be redirected to the email page again,” a demonstration video for the hack explained. “And you can redirect him to wherever you want.” According to Yahoo, fixing the exploit won’t be nearly as difficult as finding it. That’s because it’s an XSS flaw set off by a URL, a hole that can easily be patched, but hard to locate. Read the full story at Mashable.
About Shelly Palmer
Named one of LinkedIn’s Top 10 Voices in Technology, Shelly Palmer is CEO of The Palmer Group, a strategic advisory, technology solutions and business development practice focused at the nexus of media and marketing with a special emphasis on augmented intelligence and data-driven decision-making. He is Fox 5 New York's on-air tech and digital media expert, writes a weekly column for AdAge, and is a regular commentator on CNBC and CNN. Follow @shellypalmer or visit shellypalmer.com or subscribe to our daily email http://ow.ly/WsHcb
Like it? Tweet it.
"$700 Hack Threatens Millions of Yahoo Mail Users" by @ShellyPalmer
600,000 subscribers and counting...
We write a daily newsletter featuring current events and the top stories in technology, media, marketing and entertainment.Subscribe