Popular Websites Plagued with Security Vulns
Popular Websites Plagued with Security Vulns
Widely known web sites such as YouTube, MetaFilter, the New York Times and ING's website are now facing security threats.Cross-site request forgery vulnerabilities have been identified in these web sites, proving the magnitude of the flaw. The fact that CSRF was able to attack the high-profiled sites, by which complete security system is installed, implies that any ordinary web site can be preyed with these vulns. One very critical attack was launched against the ING's site whereby attackers were able to open additional accounts on behalf of a user and send the funds over to the attacker's account.
CSRF, also known as one-click attack, sidejacking or session riding,is a website malicious exploit where unauthorized commands are transmitted from a user that the website trusts. It exploits the trust that a site has for a particular user. Because it is carried out from the user's IP address, CSRF is untraceable without proper logging.
- Littlefish Rescue Unavailable
- Main
- Rescue Me
- I'm on a Mac! Please Rescue Me
- Features
- Utility Computing
- Privacy
- Offers
- Jobs
- Testimonials
- Carbon Friendly
- Sitemap
- Our Culture
- Contact Us & Our Clients
- Company
- IT Support
- IT Services News
- Disclaimer
- IT Companies
- IT Services
- Emergency IT Support Cover
- IT Support Local Areas
