Thought I was done posting about #hivesocial #hive but guess not. This time, they've taken their server offline to "fix vulnerabilities affecting service stability and user security". As it turns out what happened is that there's a vulnerability that straight up allows a malicious actor to edit another person's posts, among other things.
Dieser Artikel ist auch auf deutsch erschienen.
Following the Twitter takeover, a number of services promising to be an alternative gained traction. One of those is “Hive Social”, which reached more than a million users in the last weeks.
According to research conducted by @zerforschung, the #Twitter alternative Hive Social has got a number of dangerous #security vulnerabilies.
They allow attackers to completely access and even to partly edit anyone's data, including private posts, deleted direct messages, e-mail addresses and phone numbers signed up with etc.
Once again this demonstrates that you should not rely on closed-source software to guard sensitive data.
Dieser Artikel ist auch auf deutsch erschienen.
Following the Twitter takeover, a number of services promising to be an alternative gained traction. One of those is “Hive Social”, which reached more than a million users in the last weeks.
