X

Hackers find security flaws in 'Mr. Robot' website

White hat hackers found vulnerabilities in the website for the TV series that could have exposed user data.

Michelle Starr Science editor
Michelle Starr is CNET's science editor, and she hopes to get you as enthralled with the wonders of the universe as she is. When she's not daydreaming about flying through space, she's daydreaming about bats.
Michelle Starr

USA Network's "Mr. Robot", a show about a hacker uncovering corporate corruption, has been praised for its realistic depictions of hacking, but that savvy hasn't quite spilled over into the real world. When the "Who is Mr Robot" website launched in preparation for the second season (you can watch the newly launched trailer above), Forbes reported, a white hat hacker by the name of Zemnmez found a cross-site scripting flaw that could have exposed Facebook users completing a quiz on the website.

A second flaw, found by a hacker by the name of corenumb, left the site vulnerable to blind SQL injection, which allows data to be stolen from the website's database. Both hackers notified NBC Universal, which has since patched the flaws.