Promiscuous Cookies and Their Impending Death via the SameSite Policy
Troy Hunt
JANUARY 3, 2020
Cookies like to get around. I mean have a think about it: If a website sets a cookie then you click a link to another page on that same site, will the cookie be automatically sent with the request? What if an attacker sends you a link to that same website in a malicious email and you click that link, will the cookie be sent?
Let's personalize your content