ALPACA gnaws through TLS protection to snarf cookies and steal data

Academics from three German universities have found a vulnerability in the Transport Layer Security (TLS) protocol that under limited circumstances allows the theft of session cookies and enables cross-site scripting attacks.

You can read the full article here.