Forums
New posts
Search forums
What's new
New posts
Latest activity
Members
Registered members
Current visitors
Log in
Register
What's new
Search
Search
Search titles only
By:
New posts
Search forums
Menu
Log in
Register
Install the app
Install
Forums
Community
The Round Table
Jason Q. Huggett, your expertise is needed
JavaScript is disabled. For a better experience, please enable JavaScript in your browser before proceeding.
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an
alternative browser
.
Reply to thread
Help Support Brothers of Briar:
This site may earn a commission from merchant affiliate links, including eBay, Amazon, and others.
Message
<blockquote data-quote="jhuggett" data-source="post: 27426" data-attributes="member: 2"><p>Really not enough information to make an intelligent analysis of it but it sounds like the issue would be that they can take your "click" input and point it to whatever they want. You think you are clicking on a link to say read the next page but they use that click to say acknowledge the installation of a program. I guess by having some hidden frame over the actual content.</p><p></p><p>Problem with this kind of attack would be the site you are visiting would already have to be compromised. This is a problem already, most of our the malware you encounter is now hosted on legit sites that have been compromised. So what it would do is just expand on the amount of exploits (actual bad things) the bad guys can do once they've comprised a site.</p><p></p><p>Adobe is probably worried about this because of flash.</p><p></p><p>Still I'd have to know much more about it to make any kind of risk assessment and suggest any kind of mitigation. Usually doesn't take long after the cat's out of the bag though. People start speculating and testing things out.</p></blockquote><p></p>
[QUOTE="jhuggett, post: 27426, member: 2"] Really not enough information to make an intelligent analysis of it but it sounds like the issue would be that they can take your "click" input and point it to whatever they want. You think you are clicking on a link to say read the next page but they use that click to say acknowledge the installation of a program. I guess by having some hidden frame over the actual content. Problem with this kind of attack would be the site you are visiting would already have to be compromised. This is a problem already, most of our the malware you encounter is now hosted on legit sites that have been compromised. So what it would do is just expand on the amount of exploits (actual bad things) the bad guys can do once they've comprised a site. Adobe is probably worried about this because of flash. Still I'd have to know much more about it to make any kind of risk assessment and suggest any kind of mitigation. Usually doesn't take long after the cat's out of the bag though. People start speculating and testing things out. [/QUOTE]
Insert quotes…
Verification
Post reply
Forums
Community
The Round Table
Jason Q. Huggett, your expertise is needed
Top