VENTURE BEAT - Nov 21 - It seems others can still get inside users account through links in OKCupid emails despite reports about the security issue earlier this year. It’s through a feature called “login instantly.” The link is set up with an authentication token that tells the website, “It’s okay, this person’s legit, let ‘em in,” assuming you’re who you say you are because you’re accessing the site through your email. That doesn’t work when someone else has their hands on the email, or just the link.
by Meghan Kelly
See full article at Venture Beat
See all posts on OkCupid
| |
