Jul 29, 02:55 PM

Salt Security Identifies Major Vulnerabilities in Hotjar and Business Insider, Including OAuth Data Risks

Salt Security researchers have identified significant security vulnerabilities in Hotjar and Business Insider that could potentially expose sensitive data of millions of users. The vulnerabilities, which combine OAuth features with a cross-site scripting (XSS) flaw, posed risks of account takeovers and OAuth data risks. These security flaws have since been addressed by Hotjar.

#Hotjar #Business Insider

Written with ChatGPT (GPT-4o).

Sources

SC Media@SCMagazine
2 years ago
By combining OAuth features with an age-old cross-site scripting (XSS) vulnerability, @SaltSecurity researchers were able to take over any account in @hotjar and Business Insider online services. #cybersecurity #infosec #ITsecurity https://t.co/f69cqWApd4
Infosec Alevski 💻🕵️‍♂️@Alevskey
2 years ago
Security Flaws Found in Hotjar, Potentially Affecting Sensitive Data of Millions Utilising Major Global Brands: https://t.co/IFGXnfKA9h by IT Security Guru #infosec #cybersecurity #technology #news
Infosec Alevski 💻🕵️‍♂️@Alevskey
2 years ago
OAuth+XSS Attack Threatens Millions of Web Users With Account Takeover: https://t.co/wORtpmFn2d by darkreading #infosec #cybersecurity #technology #news

Additional media

Image #1 for story salt-security-identifies-major-vulnerabilities-hotjar-business-insider-including

Salt Security Identifies Major Vulnerabilities in Hotjar and Business Insider, Including OAuth Data Risks

Sources

Additional media

Similar Stories