Y
Hacker News
new
|
ask
|
show
|
jobs
by
dariopy
4813 days ago
Like your regular XSRF, it relies on the user already being logged in some browser tab.
It probabley has a keylogger too.