Slack Bug Would Allow Attackers Full Access

Slack has patched a flaw reported by a third party that would have given attackers full access to user’s accounts.

Slack is a cross platform collaboration app which has gained a fair amount of popularity. The app has over one million downloads just in the Google Play Store, and has cumulative rating of 4.4 with over 41 thousand reviews.

Last week, Frans Rosén, a knowledge advisor at Detectify discovered a vulnerability in the app which he was able to exploit, allowing him to steal “your precious token”. This would allow malicious attackers the ability to take full control of a victim’s account. …

If you are a Slack user, be sure to update your apps to the latest available version to ensure that you are safe from this vulnerability. …

Source: Slack Bug Would Allow Attackers Full Access – UTB Blogs


Leave a Reply