Page 2 of 2 FirstFirst 12
Results 11 to 12 of 12

Thread: Screen Name Hijack; What's Up With This CC?

  1. #11
    Senior Member zagam's Avatar
    Join Date
    Jan 2007
    Location
    Western Australia - Hammer wielding daemon
    Posts
    619

    NoScript

    I use NoScript to enable this for sites that require JavaScript.
    However, if you enable the wrong site you will still be pwned.
    You should inform webmasters of every site you need to enable
    JavaScript as those sites are the cause of this problem.

    https://addons.mozilla.org/en/firefox/addon/noscript/
    http://noscript.net/ http://en.wikipedia.org/wiki/NoScript

  2. #12
    Senior Member zagam's Avatar
    Join Date
    Jan 2007
    Location
    Western Australia - Hammer wielding daemon
    Posts
    619

    HTML is bad by design

    One more problem with HTML is that link target and link text may be different different.
    Code:
    <a href="pwny.example.com">abank.com</a>
    This becomes harmful when bad mail user agents show HTML version as HTML, by default. It is called a bank phish, but enabled by defects in the design of HTML.

    The content at pwny.example.com loads your bank's abank.com content first. Then it pops up a copy or bank's log in page and collects your details.

Similar Threads

  1. How did Microsoft Hijack
    By Cris in forum Life
    Replies: 0
    Last Post: 03-02-2005, 07:25 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •