Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Vulnerability Helps Phishing Attacks, Etc.


  • Please log in to reply
No replies to this topic

#1 Security Geek

Security Geek

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:09:49 PM

Posted 06 July 2006 - 07:37 PM

NIST.org has discovered new ways of utilizing some old vulnerabilities at Google and Yahoo. Both have a number of URL redirection holes that can assist Phishing attacks, Trojan distribution, spammers, etc. Neither have fixed the problem after being notified several months ago. The article at NIST.org outlines a new method of utilizing these holes that can be used to trick users in to visiting malicious websites. The ultimate destination of an eMail or web link can be completely masked by Google and mostly hidden by Yahoo.

Float your cursor over this Google.com link and check the task below. Then click it to see if its what you thought it would be (the link is safe). If you use Firefox the problem is even worse.

You can read the full article here:
http://www.nist.org/news.php?extend.147
(please return here to comment)

John Herron, CISSP
Editor at NIST.org

BC AdBot (Login to Remove)

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users