How TweetDeck got hacked: the non-technical answer

Earlier today, a tweet caused significant trouble and ire among TweetDeck users. It didn’t look like your average tweet: <script class="xss">$('.xss').parents().eq(1).find('a').eq(1).click();$('[data-action=retweet]').click();alert('XSS in Tweetdeck')</script>♥ — *arrrrndy (@derGeruhn) June 11, 2014 Users didn’t even have to click on the tweet. Just the act of viewing the tweet would cause the user to automatically retweet it. As a result, the message was seen …