Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Cross Site Identification (CSID) attack. Description and demonstration.
Jan 13 2010 03:40PM
Ronen Z (ronen quaji com)
A new type of vulnerability is described in which publicly available
information from social network sites obtained out of context, can be
used to identify a user in cases where anonymity is taken for granted.
This attack (dubbed Cross Site Identification, or CSID) assumes the
[ more ]
Copyright 2010, SecurityFocus