Security News > 2015 > July > LifeLock Patches XSS That Could’ve Led to Phishing (Threatpost)
2015-07-01 15:48
Researchers identified a cross-site scripting vulnerability in a page on the LifeLock website that could allow an attacker to create an authentic-looking login page for the service and harvest usernames and passwords from customers. LifeLock patched the vulnerability quickly after researchers Blake Welsh and Eric Taylor from Cinder Cyber Research reported it. Welsh said via […]
News URL
http://threatpost.com/lifelock-patches-xss-that-couldve-led-to-phishing/113577