Technology
Grindr flaw allowed hijacking accounts with just an email address – Yahoo Finance Australia
A Grindr vulnerability allowed anyone who knows a user’s email address to easily reset their password and hijack their account. A French security researcher na…
A Grindr vulnerability allowed anyone who knows a users email address to easily reset their password and hijack their account. All a bad actor needed to do was type in a users email address in the password reset page and then pop open the dev tools to get the reset token. By adding that token to the end of the password reset URL, they wont even need to access the victims inbox thats the exact link sent to the users email anyway. It loads the page where they can input a new password, giving them …
-
Noosa News20 hours agoWoman was watching keepers work when lion attacked, Darling Downs Zoo says
-
Noosa News19 hours agoWorking for someone else made it hard to care for my daughter. So I quit
-
General23 hours agoDeveloper warns wind energy capacity may not be ready by WA coal deadline
-
General15 hours ago‘Potential’ hacker contacts Qantas over data breach