Kent

Next Post

Slack Bug Allowed Automating Account Takeover Attacks

Sat Mar 14 , 2020
Slack has fixed a security flaw that allowed hackers to automate the takeover of arbitrary accounts after stealing session cookies using an HTTP Request Smuggling CL.TE hijack attack on https://slackb.com/. Web security researcher and bug bounty hunter Evan Custodio reported the bug to the team collaboration platform’s security team via […]