Flash Phishing, MySpace Passwords and Hacking PDFs
LINKS DU JOUR: Google's blacklisted URL database is chock-full of MySpace log-in credentials; Who knew Symantec had a full-fledged rock band? |
* Google's blacklisted URL database is a goldmine for MySpace user names and passwords.
* RockDotRock is a band formed by anti-virus software vendor Symantec "as an alternative to broadcast advertising." The band -- five musicians from New York City -- sings and plays original songs about the dangers of Internet fraud. Who knew?
Imperva has discovered a critical vulnerability in DWR (Direct Web Reporting), a key underlying technology in the AJAX Web application development framework.
* Identity thieves are using Flash technology to hide phishing attacks from page-analysis anti-phishing tool bars.
* In 2005, Mozilla raked in $53 million in revenues, mostly from Firefox "search engine relationships."
* Interesting back-and-forth discussion between Month of Apple Bugs hacker Kevin Finisterre and the University of Wisconsin's Dave Schroeder on the value of releasing Mac exploits without prior warning to Apple.
* Be warned that PDF files posted online can be manipulated to execute JavaScript.
Comments (2)
Boy, how embarrassing. Especially for Mr. Richard Moyle (see the password list). I guess he's been responding to all those spam messages, huh?
Posted by Paul | January 4, 2007 1:35 PM
I sure don't see any MySpace login credentials in the Google blacklist. I see links to login pages, but no passwords.
Posted by Robert Smith | January 7, 2007 7:50 AM