Y
Hacker News
new
|
ask
|
show
|
jobs
by
pkaeding
207 days ago
Yes, and get requests with the sensitive data as query parameters are often used to exfiltrate data. The attackers doesn't even need to set up a special handler, as long as they can read the access logs.