Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Phishing For Savvy Users
Scott Granneman, 2004-11-01

Recent "phishing" episodes, and two new browser vulnerabilities, show how the bad guys are tricking people into exposing their passwords and bank accounts. Couldn't happen to tech-savvy users, right? Unless you consider how entire nations have been fooled.

Comments Mode:
Phishing For Savvy Users 2004-11-02
Anonymous
As mentioned in an article linked from this site, "many of the most-damaging security penetrations are, and will continue to be, due to social engineering". That goes hand in hand with the bad browsing habits. The folks, who answer the phone and give their passwords or click on the attachments of "R...

[ more ]  [ reply ]
Phishing For Savvy Users 2004-11-02
Anonymous
What would make these problems specific to tabbed browsers? Seems like the same thing could happen with IE opened with two browser windows....

[ more ]  [ reply ]
Phishing For Savvy Users 2004-11-02
sas (1 replies)
I disagree that most users always look at the form field as they type. Many people who can't touch type will look at the keyboard while typing, and if it's a site they're familiar with they may not bother to check their text entry before pressing return. In many login pages the cursor is automatical...

[ more ]  [ reply ]
Phishing For Savvy Users 2004-11-02
Anonymous
I agree this isn't as unlikely as the author suggests.

Many people do not look at the monitor while typing, just like many people do not open emails that come from unknown sources.

The big problem here is that the browser is doing nothing to "protect" those peope that will actually type out th...

[ more ]  [ reply ]
Phishing For Savvy Users 2004-11-02
Anonymous (2 replies)
The disinformation tricks from WWII are interesting, and timely given that Remembrance Day is approaching.

However, it is a bit of a stretch to go from those to old fashioned confidence games dressed in 21st century electronic camoflage. While "tech-savvy" isn't required to detect these, "street ...

[ more ]  [ reply ]
Phishing For Savvy Users 2004-11-04
Anonymous
A bit of a stretch? We are talking about people that have the clock on their VCR flashing....

[ more ]  [ reply ]
Phishing For Savvy Users 2004-11-07
Anonymous
Next releases of Firefox and Gecko-based Epiphany too (which is affected according to Securitytracker too) are promised to include this fix as well....

[ more ]  [ reply ]
Phishing For Savvy Users 2004-11-03
r
Using Firefox 1.0 Preview Edition: Clicking on the link on the Secunia page marked "Open link in new tab" results in the link opening in the *same* tab; characters typed into the zip code box do not become visible on the Secunia page. Right-clicking on said link and requiring Firefox to open a new t...

[ more ]  [ reply ]
Phishing For Savvy Users 2004-11-03
Anonymous
The ability to submit hidden data is in every webpage.

How many URLs update every x seconds for advertising, data collection, and inflated hits (which may people incorrectly interpret as visits)?
...

[ more ]  [ reply ]




 

Privacy Statement
Copyright 2009, SecurityFocus