"two prominent security researchers have pulled a scheduled talk that was to demonstrate critical holes affecting anyone who uses a browser to surf the web.
Jeremiah Grossman and Robert "RSnake" Hansen say they planned to demonstrate serious "clickjacking" vulnerabilities involving every major browser during a presentation scheduled for September 24 at OWASP's AppSec 2008 Conference in New York. They canceled their talk at the request of Adobe, one of the developers whose software is vulnerable to the weakness, they say"
Full story courtesy of el reg here (http://www.theregister.co.uk/2008/09/16/critical_vulnerability_demo_pulled/)
Life was simpler when all we had was ASCII. :(
Quote from: Rik on Sep 17, 2008, 10:47:47
Life was simpler when all we had was ASCII. :(
maybe the evolution of the web will turn full circle, Rik :(
I could see it happening. Better start practising my ASCII smileys <g>.
Indeed Rik :-)
I think life was simpler before computers!
It was, in many ways, Seb. Computers changed the pace of life quite markedly, and in some ways we've not yet adjusted to that.
if you use firefox and noscript you can kill this threat by blocking iframe in the noscript settings. This is not a default setting.
general info here http://rcpmag.com/news/article.aspx?editorialsid=10247
Trouble is So, not everyone knows how to use noscript :(
This is being discussed over at Wilders, link:
http://www.wilderssecurity.com/showthread.php?t=221353
yet another good reason not to use IE,
Ian
As if we needed one. ;)
:lol: