Tech content trusted by users in North America and around the world
6,795 Reviews & Articles | 46,936 News Posts
TRENDING NOW: AMD rumored to launch its dual-GPU next month, the Radeon R9 Fury X2

Stay away from; it's being exploited with simple code

Onmouseover making a mess of the popular social media service
| Hacking & Security News | Posted: Sep 21, 2010 1:41 pm

If you haven't seen already, is under attack exploiting a flaw in its system with a simple code called "onmouseover" that is used to execute code or a command when your mouse cursor is moved over the bad area.


My @camwilmot account has personally been affected just now and as far as I can see, it only affects the front page of and not other pages such as your profile page.




Basically what I did by mistake was move my mouse over a strange tweet with black color background over the text and then that took over my Chrome v6 browser. Now when I load the old I am unable to access the page and if I click anywhere a link is opened in a new window. Meanwhile tweets are automatically being made consisting of re-tweets of the latest tweets from a Twitter user called "Matsta". Is this some sort of attempt to push Twitter to move all of its users to the new design that was unveiled last week or just a way to highlight flaws in Twitter's security? Some Twitter users are reporting that the new is not affected, but at the time of writing we could not confirm if this is true or not.


No doubt Twitter's developers and coders are hard at work right now putting a fix to this. As for now, you should probably avoid and stick to a Twitter client such as TweetDeck which isn't affected by this exploit.


06:45 US PST UPDATE: Here is an update from Twitter: We've identified and are patching a XSS attack; as always, please message @safety if you have info regarding such an exploit.


Related Tags

Got an opinion on this news? Post a comment below!
Subscribe to our Newsletter

Latest News Posts

View More News Posts

Forum Activity

View More Forum Posts

Press Releases

View More Press Releases