News & Events

NCC Group Blog

CSRF worm released on Twitter

27 September 2010

“Cross-site request forgery is a method of gaining access to a web application by exploiting the user’s logged-in session. This worm appears to be mischievous rather than malicious - such as the worm last week that exploited a mouseover flaw – but it exposes a serious issue in the Twitter security model which needs to be fixed to avoid users suffering weekly or daily incidents of this kind.”

Category: Blog Posts

Post a comment!

Name:
Email (optional):
Your URL (optional):

Comment:

Formatting options

News
Events
Downloads

NCC Group aims to overhaul internet trust

Analyst and investor teach-in and initiation of .SECURE project

Sensitive data left on used hard drives: Forensic Investigation for ICO

Busiest e-tailers web performance pulls further away from the field

Cyber insurance security standard: NCC Group leads the charge

Interim Management Statement

RANT Forum- InfoSec Europe Special (London)

Business North West 2012

RANT Forum (Manchester)

RANT Forum (London)

RANT Forum (Edinburgh)

Blackhat Europe 2012

Meridian International Compliance Seminar

file ()
0ZeroDayWhitepaper_09012011_Final

file ()
03_07_Inter-Protocol_Exploitation.sflb

file ()
09_06_Low_Cost_Attacks_on_Smart_Cards_-_The_Electromagnetic_Side-Channel.sflb

file ()
09_06_Inter-Protocol_Communication.sflb

file ()

1
2
3
4
5
6
7
8
9
»

Conact Us

© Copyright 2012 NCC Group