Phishing & BotNets
Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: In-session phishing
Jan 08 2006 11:47AM
Lance James (bugtraq securescience net)
Matt Richard wrote:
>On 1/8/06, Rafael San Miguel Carrasco <smcsoc (at) yahoo (dot) es [email concealed]> wrote:
>>Have you considered the fact that pop-up may be triggered as a result of
>>a second-order injection attack?
>The second hand description of the attack seems to strongly hint
>towards local malici...
[ more ]
Copyright 2010, SecurityFocus