You are viewing a single comment's thread from:
RE: [SECURITY BUG] Steemit vulerable to session hijacking
Any malicious URL pasted here could lead to session hijacking when reading your local storage and cookie contents. This is also known as XSS attacks. You'll never notice it happened, but the consequenses could be severe and resulting in a hijacked account.
It already happened about 2 weeks ago!
https://steemit.com/steemit/@steemitblog/important-security-announcement-steemit-ceo-ned-scott
https://cointelegraph.com/news/steemit-website-hacked-ceo-promises-to-reset-accounts-in-48-hours