Our wholly insecure web
“The internet is poorly designed from a security perspective and last week’s Tweetdeck Twitter client cross-site scripting incident serves as a salutary reminder.
Having left the web version of Tweetdeck running in a browser tab, I like many other users of the otherwise excellent Twitter app, encountered a dialog on the page that shouldn’t have been there.
That’s panic stations time, because it could have meant having fully lost control of your Twitter account with all sorts of reputational unpleasantness arising as a result.”