Yahoo mail hacked - xss exploit



Several Yahoo users complained that their accounts have been hacked. It appears that the Yahoo email accounts are being hacked after victim click a malicious link included.

The attack was started after one hacker or Security Researcher "Shahin Ramezany" uploaded a video in Youtube that demonstrates how to hack a Yahoo account by leveraging a DOM based XSS Vulnerability. The attack works in all major browsers.

When the victim opens the malicious link, the cookie logs of the victim are being stored in hacker website. Hacker managed to use those cookies to log in into the victims account.

A Voice actress and singer Cristina Vee, was affected by this hack and posted in a twitter account:

Friends and colleagues, don't click the link that was sent to you from my Yahoo email account, I was hacked :/ Apologies!


We recommend that users with a Yahoo account change their account passwords and make a point not to click on any suspicious links they receive by email or from anywhere else.
Yahoo mail hacked - xss exploit Yahoo mail hacked - xss exploit Reviewed by Ahamed Yaseen on 08:07 Rating: 5

No comments :

Powered by Blogger.