Mozilla unmasks security flaw in Persona, warns other OpenID implementers
By
A vulnerability found recently in an OpenID-based feature of the Mozilla Persona online identity management service prompted the company to advise Web developers to check their OpenID implementations for similar issues.