malicious site

Firefox Plug-In Updated To Fight Clickjacking Attacks

Submitted by admin on Fri, 10/10/2008 - 14:46.

Mozilla is doing its part in the battle against clickjacking. The open-source company is offering an updated plug-in for the Firefox browser that blocks what security researchers call one of the most dangerous problems on the Web.

Clickjacking occurs when a person browsing a Web site clicks on an invisible link that leads them to a malicious site without their knowledge. Some never realize it even happened. A design feature in HTML that lets Web sites embed content from other sites makes it possible, which means nearly everybody is vulnerable.

Login to post comments
Read more
Freenewsfeed
Source

Tags:

Faster Attacks Break DNS Patches in Under 10 Hours

Submitted by admin on Mon, 08/11/2008 - 18:57.

The Internet remains vulnerable to exploits of a critical security flaw in the Domain Name System, a Russian programmer demonstrated last week. Writing on his blog on Friday, Evgeniy Polyakov posted that he had succeeded in getting patched DNS software to return an incorrect location in less than 10 hours.

His work shows that DNS patches, which had appeared to solve the immediate problem, are insufficient.

Cache Poisoning