AAPL Stock: 118.88 ( + 1.13 )

Printed from

Research shows Internet Explorer open to 'cookiejacking'

updated 07:55 pm EDT, Wed May 25, 2011

All sites said to be vulnerable

An independent security researcher, Rosario Valotta, suggests Internet Explorer is vulnerable to attacks that target the private data stored in HTTP cookies. The flaw is said to leave users open to what Valotta calls "cookiejacking," a method that hackers can reportedly use to access a cookie and log into victims' various online accounts.

The vulnerability is said to require users to drag and drop an item across the screen. Volatta claims to have created a Facebook app that exploits the flaw by requiring users to virtually undress a woman, enabling him to amass 80 cookies from his total list of just 150 friends.

Microsoft suggests the requirement for user interaction is unlikely to be used in an actual hacking scenario, company spokesman Jerry Bryant told Reuters.

The vulnerability is said to potentially affect all versions of Internet Explorer running on any Windows edition.

by MacNN Staff



Login Here

Not a member of the MacNN forums? Register now for free.


Network Headlines

Follow us on Facebook


Most Popular


Recent Reviews

Ultimate Ears Megaboom Bluetooth Speaker

Ultimate Ears (now owned by Logitech) has found great success in the marketplace with its "Boom" series of Bluetooth speakers, a mod ...

Kinivo URBN Premium Bluetooth Headphones

We love music, and we're willing to bet that you do, too. If you're like us, you probably spend a good portion of your time wearing ...

Jamstik+ MIDI Controller

For a long time the MIDI world has been dominated by keyboard-inspired controllers. Times are changing however, and we are slowly star ...


Most Commented