New Grammarly bug allegedly leaked authentication tokens, the company fixes immediately

Grammarly Bug

Have you not upgraded your website to HTTPS yet? Upgrade NOW.

Google with its Chrome 68 update to show all HTTP websites as NOT SECURE. Avoid Google's penalty by installing an SSL Certificate. Get a DigiCert Standard SSL and secure your website at just $157/year. BUY NOW

ADVERTISEMENT
DAILY BRIEF
Get daily updates straight in your inbox.

It was most recently revealed that the popular copyediting app, Grammarly had been carrying a bug that questions the security of personal data across the internet platform. Tavis Ormandy, the security researcher of Project Zero of Google said that it was really quick for the company to fix the bug on Chrome Web Store.

The ‘high severity’ Grammarly bug was found by Tavis in the app’s versions of Chrome and Firefox browser extensions. According to him, this bug would let any website have access to any “documents, history, logs, and all other data” of Grammarly users via the two browsers.

Related:

Grammarly is used by about 22 million people, and the company said that it “has no evidence that any user information was compromised” for the security glitch. A Grammarly spokesperson stated that they are monitoring actively for detecting unusual acts.

As for Firefox, Tavis reports that Mozilla rolled out the fix and updated version which would reach the users automatically. That pretty much echoed in the statement by the Grammarly spokesperson:

The bug is fixed, and there is no action required by Grammarly users.

Well, that settles it for now. But it is worthy to note that any online data using browser plugin has a possible risk of your typed data getting accessed by other online hands.

Via: Gizmodo

New Grammarly bug allegedly leaked authentication tokens, the company fixes immediately