Advertisements

New Grammarly bug allegedly leaked authentication tokens, the company fixes immediately

Grammarly Bug

It was most recently revealed that the popular copyediting app, Grammarly had been carrying a bug that questions the security of personal data across the internet platform. Tavis Ormandy, the security researcher of Project Zero of Google said that it was really quick for the company to fix the bug on Chrome Web Store.

The ‘high severity’ Grammarly bug was found by Tavis in the app’s versions of Chrome and Firefox browser extensions. According to him, this bug would let any website have access to any “documents, history, logs, and all other data” of Grammarly users via the two browsers.

Grammarly is used by about 22 million people, and the company said that it “has no evidence that any user information was compromised” for the security glitch. A Grammarly spokesperson stated that they are monitoring actively for detecting unusual acts.

As for Firefox, Tavis reports that Mozilla rolled out the fix and updated version which would reach the users automatically. That pretty much echoed in the statement by the Grammarly spokesperson:

The bug is fixed, and there is no action required by Grammarly users.

Well, that settles it for now. But it is worthy to note that any online data using browser plugin has a possible risk of your typed data getting accessed by other online hands.

Advertisements

Via: Gizmodo

New Grammarly bug allegedly leaked authentication tokens, the company fixes immediately