I'm specifically talking about CSRF as I've found that to be quite widespread an... | Hacker News

Hacker Timesnew | past | comments | ask | show | jobs | submit

		nsgi on April 8, 2020 \| parent \| context \| favorite \| on: An alternative to using Google Analytics on your w... I'm specifically talking about CSRF as I've found that to be quite widespread and some analytics providers have had flaws that can lead to your account being deleted or stats sent to someone else's email address, etc. I don't know if there's a similar problem with XSS, but I trust Google's security practices more than most other companies.

Ayesh on April 8, 2020 [–]

I see. I always have this idea in my head, to start a service and get people to put my script on their web sites, and pull a grand scam one day by changing the script to do something malicious on those poor sites that didn't add SRI.

Consider applying for YC's Summer 2026 batch! Applications are open till May 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact