Sure, love might be in the air — but that doesn’t mean tens of millions of Match.com users’ passwords should be floating around like so many bits of easily grabbed flotsam and jetsam. A new report says that due to an apparent security flaw in the dating site’s log-in process, millions of users are at risk for having their passwords stolen. [More]
https
Report: Match.com Sign-In Security Flaw Could Be Putting Millions Of User Passwords At Risk
Your Facebook Login Can Get Jacked By A Monkey With A Mouse
The guy sitting next to you in the coffee shop might actually be logging into your Facebook account, using the info beaming out your computer. It’s called “session hijacking” or “sidejacking” and despite it being a well-known vulnerability, most websites aren’t protecting their users from it. After a developer recently unveiled a user-friendly bit of code that makes “sidejacking” as easy a few mouse clicks, the problem is getting fresh attention. [More]