Stopping the cross-site authentication attack
STRANGE PHISHING
A new form of phishing attack deposits an HTML tag on the vulnerable service to trap users into authenticating.
Phishing messages should be a familiar sight to most readers. They appear to come from your bank or eBay and ask you to enter your credentials on a spoofed login page. A phishing attack uses trickery to spy on user credentials. Another method, known as cross-site scripting (XSS, as CSS stands for Cascading Style Sheets), places active code on a vulnerable page. The unsuspecting user’s web browser runs the code and sends the user’s login data to the attacker.
Buy this article as PDF
(incl. VAT)
Buy Linux Magazine
US / Canada
UK / Australia
News
-
Pop!_OS 20.10 Now Supports DEB822 Format
The Linux distribution from System 76 has converted over to the friendlier apt format.
-
Ubuntu 20.10 Now Supports Raspberry Pi
Ubuntu 20.10 is the first release from Canonical to support the Raspberry Pi single board computer.
-
A New Linux Distribution has been Released
Emperor-OS is a new Linux distribution focused on programming, developing, and data science.
-
Ubuntu Groovy Gorilla Beta Available
The beta version for Ubuntu’s latest release is now available for testing.
-
Microsoft is Finally Set to Release Edge Browser for Linux
Chromium-based MS Edge browser will soon be available for testing on Linux.
-
Lenovo Now Offering Ubuntu 20.04 as an Option
Lenovo is making good on its promise to support Linux as a pre-install option.
-
Linux Deepin 20 Released
One of the most beautiful Linux distributions on the market has been refreshed.
-
A New Version of Zorin OS is Now Available
Fan-favorite, Zorin OS 15.3 is officially available.
-
Lenovo Now Offering Fedora Linux as an Option
Lenovo is making good on their Linux promise by adding Fedora into the mix.
-
System76 Launches New High-End Laptop
System76 has unleashed a beast of a mobile workstation.