An 21 Years Old Information Security Expert, Narendra Bhati From Sheogan Rajasthan , has discovered a non-persistent XSS security flaw in the official website of BrotherSoft.
Narendra found that the Search Query field in the Webpage of the brothersoft.com is vulnerable to XSS attack. BrotherSoft Providing worldwide customers as among the top 5 leading
software download websites. Over 250,000 freeware and shareware are for
free download which covers 7 channels including Windows, Mac, Mobile,
etc. There are more than 10,00,000 downloads every day on their site.
Monday, 4 February 2013
The team revealed that anonymous hackers may have had access to approximately 250,000 user credentials that includes usernames, email addresses, session tokens and encrypted/salted versions of passwords. As a precautionary security measure, Twitter has reset passwords and revoked session tokens for these accounts.
The affected accounts will have recently received an email regarding the issue and ask you to create a new password.