While consumers and tech pundits alike were excited for the long-awaited release of HP's webOS-based TouchPad, researchers have reportedly discovered a vulnerability in the tablet's coding that may put a damper on the enthusiasm.
According to a Dark Reading report, researcher Orlando Barrera recently published a proof-of-concept detailing a zero-day flaw in HP's webOS 3.0, the mobile operating system on which the TouchPad is based. The flaw, Barrera stated, allows an attacker to inject code into the software which may then be used to steal information from the user or build a botnet.
Barrera said the flaw is relatively simple. An attacker could use a cross-site scripting attack to build a botnet, which could then be used to steal a wealth of information, including contact lists, email addresses and passwords.
The flaw is alarming, though webOS isn't the only mobile operating system vulnerable to attacks. Google's Android is also often subject to criticism given its security flaws that come as a result of its open source nature.