- Security Center
- English ▾
Making Sense Of Cross-Site Scripting
You may have seen the headlines last week about a series of worm attacks on Twitter. As we know that many of you use the site (and maybe even follow the team here at Lavasoft on it) we’d like to take a moment to clarify what it was and how you can stay safe.
The worms on Twitter were part of a cross-site scripting, or XSS, attack. Rather than a file that is installed on your machine, the infection is malicious code injected into the web page itself.
Another solution is to install Firefox and take advantage of the “NoScript”
learn how to use this plug-in properly, the end result of knowing what a web page is really trying to do when it loads in your browser – and controlling what
scripts can and can’t run – may be well worth the learning curve.