|
|
|
|
|
|
by Control8894
750 days ago
|
|
|
> One day, an intermediary system is hijacked which carries your traffic, and your weather information can be rewritten in transit. Your credibility for providing outstanding data is compromised when you start serving up weather information that predicts sunny skies when a tornado watch is in effect. Why would they want to do that? Is your weatherman always right? > Additionally, you have now leaked information related to the traffic of your users. Even if the request is just vanilla HTTP-only, an adversary can see that your users from one region are interested in the weather and can start building a map of that traffic. Ah, yes, people are interested in the weather. Wow! Of course, they could get the same info from observing that users are connecting to the IP address of a weather API provider. > They also inject a javascript payload into your traffic that starts computing bitcoin hashes and you are blamed for spreading malware. Got there eventually. Crappy ISPs. |
|
|