Peter Eckersley writes:
Over the weekend, there was an odd story about people using AT&T’s wireless network trying to log in to Facebook, and suddenly finding themselves logged in to somebody else’s Facebook account. What could have caused such a strange phenomenon to occur? What does it tell us about the innards of the mobile web, and what lessons might it convey for network and application design?
Ars Technica had a good post documenting some of the possibilities, and AT&T has now made some public statements containing a few key clues about the problem. We have a few things to add.
Read more of EFF’s technical analysis here.