Blue Coat Systems shares are trading sharply lower in the after-hours session Thursday after the Web security and wide-area network optimization software company reported disappointing guidance for the July quarter.
Because the script is being run in the context of the trusted web site, it has access to cookies such as session tokens, as well as any other user information available within the security context of that web site.
Dan Kaminsky, the security researcher who found a major flaw in the domain name system in 2008 and recently founded a new company devoted to securing Web applications, says that a rickety session management system combined with a record number of users led to the tangled logins.
In a Youtube video that the company features on its web site, the tool got enthusiastic reviews from doctors who tried it out during a demo session at HIMSS with iPads.
Have you ever been in the middle of filling out a form on a web page and you got called away from your computer, only to come back and discover the session had timed out and you had to fill out the form all over again from the beginning?