Cookie stealing from mojang.com and minecraft.net with fix instructions

As I heard that hackers called ourmine can steal everyone's account by stealing cookies, I checked session cookies of mojang.com and minecraft.net. I found the reason of vulnerability:
Session cookies are not set to httpOnly nor isSecure. Those flags should be set to true to prevent stealing cookies.

For bugs.mojang.com its "httponly", but without "issecure". Please add "issecure" also for bugs.mojang.com session cookie.