CSS Is So Overpowered It Can Deanonymize Facebook Users

31st May, 2018 By Catalin Cimpanu


CSS mix-blend-mode attack


Some of the recent additions to the Cascading Style Sheets (CSS) web standard are so powerful that a security researcher has abused them to deanonymize visitors to a demo site and reveal their Facebook usernames, avatars, and if they liked a particular web page of Facebook.


Information leaked via this attack could aid some advertisers link IP addresses or advertising profiles to real-life persons, posing a serious threat to a user’s online privacy.


The leak isn’t specific to Facebook but affects all sites which allow their content to be embedded on other web pages via iframes.


Full Article.

Take a look at the best antivirus, anti-malware, anti-spy, etc. software

Powered by WPeMatico

This entry was posted in anti-malware and tagged , , , , , , , , , , , , , , , , , , , , , , . Bookmark the permalink.

Comments are closed.