A Turkish grad student has devised a serious, real-world attack on Twitter
that targeted a recently discovered vulnerability in the secure sockets layer
protocol.
The exploit by Anil Kurmus is significant because it successfully targeted
the so-called SSL renegotiation bug to steal Twitter login credentials that
passed through encrypted data streams. When the flaw surfaced last week, many
researchers dismissed it as an esoteric curiosity with little practical effect.