Etherscan rushes to plug vulnerabilities following strange hacking attempts overnight

Etherscan, the most widely used Ethereum blockchain explorer, has quickly patched security vulnerabilities overnight as hackers exploited certain parts of its service. Hackers successfully manipulated the Disqus API – a third-party service used by Etherscan that allows for comments to be left on Ethereum wallet addresses. They successfully executed a Cross Site Scripting (XSS) attack to inject JavaScript code into its interface that forced a spooky message to pop-up for its users. It simply read: ‘1337’ – which is ‘leetspeak’ for ‘elite,’ an early-internet pseudo-language popular at the dawn of the internet which replaced English letters with ASCII symbols. Twitter users were…

This story continues at The Next Web

from The Next Web https://ift.tt/2OahdVM