Net Manager
Network Managing, Engineering and Administration with an eye toward security.

Best practices meets the real world!

Wednesday, December 10, 2003  

I've been tracking this since Tuesday on the Full Disclosure mailing list. At first, I thought it was just another way for folks to obfuscate an address (there are many). Then after seeing some posts today, it's clear that: IE bug lets fake sites look real. The only problem with the headline is that the other browsers (Mozilla, Netscape, Opera, etc) do the redirect but show the obfuscation clearly in the address line. IE makes it look like you are at the real site. I setup a test for the folks in my Dept. and they sure didn't like what they were seeing. This one is nasty, and makes the eBay and PayPal scams *SO* much easier to foist on folks.

posted by David | 12/10/2003 07:08:00 PM


Post a Comment

<< Home

News Links
Blog Links


Reading blogs at work? Click to escape to a suitable site!
Get Firefox

Site Meter

Powered by Blogger