RSS, Atom Newsfeeds expose Bloggers to Hack Attack
What next? CNET reports:
The problem doesn’t affect only blogs–any kind of information feed using any kind of format could potentially be used to transmit malicious content to a subscriber, Auger said. People, for example, subscribe to mailing lists and news Web sites via RSS, he said, noting “this is about the entire concept of Web feeds.”
You can of course turn off scripts in your browser, but then you would miss out on a lot of cool features blogs are designed for. So I don’t recommend that (except for the completely paranoid).
Perhaps the real problem is your favorite newsreader (aggregator):
“A large percentage of the readers I tested had some kind of an issue,” he said. In his presentation, Auger listed Bloglines, RSS Reader, RSS Owl, Feed Demon, and Sharp Reader as vulnerable.
Are you listening Nick Bradbury?
Related links: blog bloke, instabloke, blog, weblog, blogging, blog tools, web 2.0, internet, computers and internet, technology, tech, software, newsfeed, rss, ajax, security