[Noisebridge-discuss] Paypal "account verification"
A Ghost.
erik.nels0n99 at gmail.com
Sun May 30 05:12:53 UTC 2010
At first it sounded like this:
--New Twist on Phishing Targets Open Browser Tabs
> (May 24, 25 & 26, 2010)
> A Firefox developer is warning of a new kind of phishing attack that
> preys on users' inattention to which tabs they have open in their
> browsers. The attack is perpetrated by JavaScript code in a
> specially-crafted page. When users have several tabs open and are not
> viewing the site with the malicious code, the code surreptitiously
> changes the destination page after several minutes of inactivity; the
> favicon and title of the page are changed as well. The attack can be
> made more personal by perusing users' browsing histories and making the
> page appear to be one that the user frequents, such as Facebook or a
> banking login page. When the user goes back to the tab, there is a
> sign-on screen asking for login credentials. The vulnerability affects
> all major browsers that run on Mac OS X and Windows.
>
> http://krebsonsecurity.com/2010/05/devious-new-phishing-tactic-targets-tabs/
> http://www.theregister.co.uk/2010/05/25/tabnapping_phishing_attack/
>
> http://www.h-online.com/security/news/item/New-phishing-attack-exploits-tabbed-browsing-1006386.html
>
> http://www.computerworld.com/s/article/9177326/Sneaky_browser_tabnapping_phishing_tactic_surfaces?source=CTWNLE_nlt_pm_2010-05-25
>
> http://www.computerworld.com/s/article/9177398/How_to_foil_Web_browser_tabnapping_?taxonomyId=85
On Sat, May 29, 2010 at 12:20 PM, Rev. Dan <doktahworm at gmail.com> wrote:
> Rather, I *find* it interesting.
>
> - Dan
>
>
> On May 29, 2010, at 11:16 AM, "Rev. Dan" <doktahworm at gmail.com> wrote:
>
> >> technical issues involved, but I expect Paypal to use knowledgeable
> >> people.
> >
> > I think the usage of the word "use" vs. one like "employ" to be
> > interesting.
> >
> > - Dan
> _______________________________________________
> Noisebridge-discuss mailing list
> Noisebridge-discuss at lists.noisebridge.net
> https://www.noisebridge.net/mailman/listinfo/noisebridge-discuss
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.noisebridge.net/pipermail/noisebridge-discuss/attachments/20100529/12237682/attachment-0003.html>
More information about the Noisebridge-discuss
mailing list