Bleeping Computer

Stresspaint Malware Steals Facebook Credentials and Session Cookies

Security researchers have spotted a new information stealer that collects Chrome login data from infected victims, along with session cookies, and appears to be looking for Facebook details in ...
TWCN Tech News

Cookie Stealing or Scraping: Why do Hackers want your Cookies?

A Computer Cookie is a small data packet or a tiny file that websites store on a user’s computer. Normally, cookies are harmless. The aim of creating website cookies is to enhance the users’ internet ...
Fox News

Beware of this sneaky Google attack that steals your expired cookies

A new exploit threat lets hackers access your Google account using expired cookies that contain your login information. The exploits, which were discovered late last year, target session cookies, ...
ZDNet

Some enterprise VPN apps store authentication/session cookies insecurely

At least four Virtual Private Network (VPN) applications sold or made available to enterprise customers share security flaws, warns the Carnegie Mellon University CERT Coordination Center (CERT/CC) ...
JD Supra

Privacy FAQs: Does the CCPA require a cookie banner when a company uses first-party session cookies?

The California Consumer Privacy Act ("CCPA") was enacted in early 2018 as a political compromise to stave off a poorly drafted, and plaintiff’s friendly ballot ...
Computer Weekly

Session fixation protection: How to stop session fixation attacks

Question: What is session fixation and how can I protect my users from it? Session fixation is a vulnerability caused by incorrectly handling user sessions in a Web application. A user’s session is ...
Threat Post

Security Vulnerability in Django Could Allow Attackers Access to Cookies

Web app framework Django contains a vulnerability that puts session cookies at risk, but the group in charge has decided not to patch the flaw, and instead warn developers about the problem. A ...