Covert Redirect bug (OAuth / OpenID) – What you need to know …

“… it’s not easy to fix, and any effective remedies would negatively impact the user experience. Just another example that Web security is fundamentally broken and the powers that be have little incentive to address the inherent flaws.” – Jeremiah Grossman, founder and interim CEO at WhiteHat Security If you visit a lot of different websites, you’ve…