Vulnerability Found By BlitzSec & TeamHav0k In Ask.com & AOL.com
Hackers found serious security flaws in one of the world's best search engines AOL.com & Ask.com. A newly formed hacker group named BlitzSec has figure out that Advanced search area of Ask.com & a sub-domain that is toolbar.ask.com is vulnerable to XSS attack which can even lead to cookie catching attacks. In a pastebin release the hacker has disclosed all the vulnerabilities in details. Later the authority has patched the security issue but still the toolbar.ask.com is vulnerable. Earlier two Indian hackers named Minhal Mehdi & NotTy_rAj found XSS vulnerability on Ask.com.
Not only Ask but also AOL previously known as America Online (another very popular search engine) is vulnerable to cross site scripting attacks. This vulnerability has been disclosed by another hacker group named TeamHav0k. In a pastebin release the hacker has posted the vulnerable links. The vulnerabilities are still unpatched. Earlier this group has found serious security flaws in many high profile sites like Huffingtonpost, EA, IGN, NYTimes, NASA, Sony, Adidas and many more.