logoalt Hacker News

l72today at 12:54 PM1 replyview on HN

The fact that most of these are capturing query parameters:

  "u": "https://www.google.com/search?q=target",
indicates that are capturing tons of authentication tokens. So this goes way beyond just spying on your browser history.

Replies

cess11today at 1:30 PM

If a service is sending auth tokens as URL parameters, stop using it. Those are always public.

show 1 reply