Privacy professionalsRoyal Mail cyber security still a mess, say infosec sleuths
UK's Royal Mail has left an open redirect flaw on one of its sites, potentially exposing customers to malware and phishing attacks.
Open redirects allow attackers to use a legitimate website to redirect users to a malicious website, stealing credentials and downloading malware.
Cybernews has informed Royal Mail of the flaw, but the company has not responded. [ more ]