[kwlug-disc] DuckDuckGo.com -- an alternate search engine
Fernando Duran
liberosec at yahoo.ca
Wed Jul 28 11:12:42 EDT 2010
----- Original Message ----
> From: Eric Gerlach <eric+kwlug at gerlach.ca>
...
>
> Attack #1: Using existing logins
>
> - You're logged into a site you care about (let's say your bank, or
> launchpad)
> - Malicious Javascript looks through your history (yes, it can do this)
> to find recently visited sites that it knows about
Just tooting my own horn: detecting browser's history is very easy to do, we
implemented it in http://watsec.com/myip
Cheers,
Fernando
http://fduran.com
More information about the kwlug-disc
mailing list