JAVA: new variation on a theme?
Page 1 of 2 12 LastLast
Results 1 to 10 of 16

Thread: JAVA: new variation on a theme?

  1. #1
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190

    JAVA: new variation on a theme?

    It seems that the idea of poisoning websites with Java scripts has taken a slightly new twist.

    Attackers have taken advantage of JavaScript before, but usually on individual sites. The search engine trick — which has been focused on Google, though it could work on Yahoo and MSN search engines — is new, Danchev says.
    Apparently it works like this:

    The vulnerability occurs when someone does a Google search, then clicks on a result that has been secretly tainted by hackers. They will usually be taken to the Web page they expect. But at the same time, they are invisibly redirected to a computer server that installs a hidden program.
    Article is here:

    http://www.usatoday.com/tech/news/co...s_N.htm?csp=34

    The worry here is that the targets seem to be large and reputable sites, that more security aware people would be tempted to allow in FireFox's "NoScipt" plugin, or put in the trusted zone of IE?

    Still want to turn off UAC.....................assuming that would warn you?????

  2. #2
    Dissident 4dm1n brokencrow's Avatar
    Join Date
    Feb 2004
    Location
    Shawnee country
    Posts
    1,243
    That almost sounds like a phishing issue: impostor sites loading malicious scripts.

    Phishing taken to a new level?

    edit -- Shane Macaulay got around UAC apparently running his javascript on Flash in Pwn2Own contest (I'm guessing UAC was enabled on that unit since that is the default). I suppose UAC is better than nothing, but I'd think the latest anti-phishing tech in a browser would be a good solution.
    Last edited by brokencrow; April 1st, 2008 at 07:21 PM.
    “Everybody is ignorant, only on different subjects.” — Will Rogers

  3. #3
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190
    Maybe I am misunderstanding this brokencrow?

    The way I read it is that reputable sites are being poisoned, so that when a search engine takes you there, you also make a connection to a hidden site that infects you?

    You trust the site you want to visit, and are not aware of the "additional features"

    I wonder how the code is getting in there though?

  4. #4
    Dissident 4dm1n brokencrow's Avatar
    Join Date
    Feb 2004
    Location
    Shawnee country
    Posts
    1,243
    I see your point, nihil. When one visits any given website, one is
    actually visiting a series of sites linked to that primary page. And
    one of those linked sites is tainted. Ich verstehe.

    How is the code getting in there? Google ads?
    Last edited by brokencrow; April 1st, 2008 at 08:58 PM.
    “Everybody is ignorant, only on different subjects.” — Will Rogers

  5. #5
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052
    Why is the title of this JAVA:?

  6. #6
    Senior Member JPnyc's Avatar
    Join Date
    Jan 2005
    Posts
    2,734
    This is why I have JavaScript (and activeX, Java) disabled for all but my own sites.

  7. #7
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190
    Why is the title of this JAVA:?
    It isn't......................?????????????



    Obviously, if you are having problems with your browser, we would gladly try to help...................
    Last edited by nihil; April 1st, 2008 at 11:59 PM.

  8. #8
    Senior Member
    Join Date
    Oct 2003
    Location
    MA
    Posts
    1,052
    Title of thread: JAVA: new variation on a theme?
    Content of thread: JavaScript exploit

  9. #9
    Senior Member nihil's Avatar
    Join Date
    Jul 2003
    Location
    United Kingdom: Bridlington
    Posts
    17,190
    So?

  10. #10
    Dissident 4dm1n brokencrow's Avatar
    Join Date
    Feb 2004
    Location
    Shawnee country
    Posts
    1,243
    On a related note, Google is now using javascript to add smells to webpages.

    http://booksearch.blogspot.com/2008/...ls-better.html

    Amazing, ain't it?
    “Everybody is ignorant, only on different subjects.” — Will Rogers

Similar Threads

  1. Writing a port scanner in Java
    By cgkanchi in forum The Security Tutorials Forum
    Replies: 13
    Last Post: February 8th, 2005, 03:39 PM
  2. Java flaw could lead to Windows, Linux attacks
    By SDK in forum Miscellaneous Security Discussions
    Replies: 15
    Last Post: November 26th, 2004, 04:50 AM
  3. Men speak C, Women speak Java.
    By MrLinus in forum Cosmos
    Replies: 4
    Last Post: April 18th, 2004, 09:01 AM
  4. A 'hard hit' to Microsoft...
    By -DaRK-RaiDeR- in forum AntiOnline's General Chit Chat
    Replies: 5
    Last Post: December 31st, 2002, 06:39 AM
  5. Difference between Java and JavaScript
    By Remote_Access_ in forum Security Archives
    Replies: 4
    Last Post: January 3rd, 2002, 11:11 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •