Security flaw puts White House website “at the mercy of” CrazyEgg.com
The White House website devotes a significant chunk of its real estate marketing the need “to protect cyberspace for what we use it for today and will need in the future.”
While there is little doubt that said needs are real, one wonders why a prominent government website like whitehouse.gov suffers from an amateurish security vulnerability.
The key weakness? The White House website includes a tracking library from cetrk.com. The JavaScript library, created by “crazyegg.com”, is typically used to produce graphical “heat maps” that show which pages visitors are clicking…