navigation
a webmaster learning community
     Home    Register     Search      Help      Login    
Sponsors

Shopping Cart Software
Ecommerce software integrated into Frontpage, Dreamweaver and Golive templates. No monthly fees and available in ASP and PHP versions.

Website Templates
We also have a wide selection of Dreamweaver, Expression Web and Frontpage templates as well as webmaster tools and CSS layouts.

Frontpage website templates
Creative Website Templates for FrontPage, Dreamweaver, Flash, SwishMax

Search Forums
 

Advanced search
Recent Posts

 Todays Posts
 Most Active posts
 Posts since last visit
 My Recent Posts
 Mark posts read

Microsoft MVP

 

Creepy

 
View related threads: (in this forum | in all forums)

Logged in as: Guest
Users viewing this topic: none
Printable Version 

All Forums >> Community >> OutFront Discoveries >> Creepy 		Page: [1]
 
jcm001

 

Posts: 105
From: Charlotte, NC, USA
Status: offline

  		Creepy - 2/5/2008 13:22:19   


http://news.netcraft.com/archives/2008/01/08/italian_banks_xss_opportunity_seized_by_fraudsters.html
Tailslide

 

Posts: 5915
Joined: 5/10/2005
From: Out here on the raggedy edge
Status: offline

  		RE: Creepy - 2/5/2008 14:25:01   
Bloody hell! That's certainly a step up from the normal scam!

_____________________________

"My strategy is so simple an idiot could have devised it"
Little Blue Plane Web Design | Blood, Sweat & Rust - A Land Rover restoration project

(in reply to jcm001)
rdouglass

 

Posts: 9167
From: Biddeford, ME USA
Status: offline

  		RE: Creepy - 2/5/2008 15:00:04   
This is *very* disturbing to me:

quote:

...the URL employed by the attack injects a series of numbers directly into a JavaScript function call that already exists on the bank's LoginServlet page.


Is it time to get rid of JS as well? So for instance, I have a small very unobtrusive scrolling JS on a page. So now I have to worry 'bout some hacker sending a URL and essentially nullifying my SSL cert?

As I frequently say "It's a scary world out there."

_____________________________

Don't take you're eye off your final destination.

ASP Checkbox Function Tutorial.

(in reply to Tailslide)
mtfm

 

Posts: 414
Joined: 1/13/2006
From: Mesa, AZ
Status: offline

  		RE: Creepy - 2/6/2008 11:07:52   
Great. Just great.

It never fails, once something good comes along, people have to come along and ruin it.

Bank robbers don't even need a mask and a gun anymore to rob people blind.

Bunch of parasites.

_____________________________

Is this possible? How about this? What about....?

(in reply to rdouglass)
Page:   [1]

All Forums >> Community >> OutFront Discoveries >> Creepy 		Page: [1]
Jump to: 1





New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts


Back to top

  Microsoft Corporation in no way endorses or is affiliated with "OutFront."
  OutFront is published and edited by Thomas Brunt.
  440 Great Circle Dr., St. Matthews, SC 29135.
  © 2008 All Rights Reserved
  Click here to view our privacy statement.