SANS: Who needs exploits when you have social engineering?
“This is what the attackers do:
- first they modify the FB application’s HTML (the Truth fan web page that the user adds),
- then they select all contacts (the setTimeout fs[select_all()] call which gets executed after 3 seconds).
- then they invite all user’s friends to the group
- finally they display the text in that application”
About me
a friendly linkblog covering email technology, spam prevention, "deliverability," and related topics.
Box of Meat is not associated with any particular company or organization.
Hate the web? Get your daily Box of Meat delivered by newfangled electronic mail!
www.flickr.com
|
Box of Meat is licensed under a Creative Commons Attribution-Share Alike 3.0 United States License.
