Slack has fixed a bug that allowed attackers to hijack user accounts by tampering with their HTTP sessions. The flaw could have allowed attackers to pilfer users’ cookies, giving them full account access.
Read full article on Naked Security
Slack fixes account-stealing bug
- News live: Australia confers with New Zealand on Rafah and looming UN vote; Lehrmann trial costs decision due Friday
- Alleged LockBit admin and lead developer named and targeted by US, UK and Australian authorities
- RSAC 2024: Outfoxing SSO: Bypassing modern authentication
- America’s War on Drugs and Crime will be AI powered, says Homeland Security boss
- Alleged LockBit admin and lead developer named and targeted by US, UK and Australian authories