Clearly I missed out on all the fun.Posted: February 12, 2009 | Author: tech0x20 | Filed under: bookmarks | Tags: clickjacking, security, twitter | Leave a comment »
Apparently, there was another exploit on Twitter today? #dontclick
Those exploited would end up tweeting the following message:
Don’t Click: http://tinyurl.com/amgzs6
So, it was a Twitter worm by way of clickjacking. Though I missed out on the fun, I learned a new security term: CSRF (Cross-site request forgery). I tell you, security geeks get to see all kinds of cool stuff.
Code analysis: Twitter Don’t Click Exploit
Twitter’s response: Twitter Blog: Clickjacking Blocked.