A worm targeting Yahoo e-mail users illustrates how the open source Ajax web development language can open the door to attackers, security experts have warned.
By submitting your email address, you agree to receive emails regarding relevant topic offers from TechTarget and its partners. You can withdraw your consent at any time. Contact TechTarget at 275 Grove Street, Newton, MA.
Hoffman, who has discussed the worm with the FBI, warns on an SPI blog that Ajax makes the Cross Site Scripting (XSS) language used by hackers more of a threat.
The combination of XSS and Ajax was first used in the public domain with the launch of the MySpace worm, also known as the Samy worm, in October 2005, Hoffman added.