Security researchers have disclosed a concerning vulnerability in popular chat client Slack that allowed attackers to hijack your account and take control of your entire communication line. The flaw, which was initially spotted and documented by Frans Rosén from cybersecurity firm Detectify, basically allows ill-intended individuals to snatch your Slack token by tricking you into opening a malicious page. What tipped Rosén off about this loophole was a glitch in the browser version of the app which allowed him to hang up other people’s calls. He then uncovered another flaw in the code which enabled him to intercept the messages being sent to…
This story continues at The Next Web
Or just read more coverage about: Slack
No comments:
Post a Comment