Firefox, Opera Allow Phishing By Data URI Claims New Paper

Firefox, Opera Allow Phishing By Data URI Claims New Paper 151

Posted by Unknown Lamer on Tuesday September 04, 2012 @03:08AM from the but-it-said-it-was-a-cat-picture dept.

hypnosec writes "A student at the University of Oslo, Norway has claimed that Phishing attacks can be carried out through the use of URI and users of Firefox and Opera are vulnerable to such attacks. Malicious web pages can be stored into data URIs (Uniform Resource Identifiers) whereby an entire webpage's code can be stuffed into a string, which if clicked on will instruct the browser to unpack the payload and present it to the user in form of a page. This is where the whole thing gets a bit dangerous. In his paper, Phishing by data URI [PDF], Henning Klevjer has claimed that through his method he was able to successfully load the pages on Firefox and Opera. The method however failed on Google Chrome and Internet Explorer."

Firefox, Opera Allow Phishing By Data URI Claims New Paper

Search 151 Comments Log In/Create an Account

Comments Filter:

Wonder if this works on /. (Score:4, Funny)

by Sqr(twg) ( 2126054 ) writes: on Tuesday September 04, 2012 @03:47AM (#41220269)

Testing if I can embed
Read the rest of this comment...

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Firefox, Opera Allow Phishing By Data URI Claims New Paper 151

Firefox, Opera Allow Phishing By Data URI Claims New Paper More Login

Firefox, Opera Allow Phishing By Data URI Claims New Paper

Wonder if this works on /. (Score:4, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot