Malicious ads served to hundreds of thousands of Yahoo.com visitors
If you visited Yahoo.com since December 30, you may be one of hundreds of thousands of visitors served up malware via Yahoo’s advertising network.
Ms. Smith’s blog
If you visited Yahoo.com since December 30, you may be one of hundreds of thousands of visitors served up malware via Yahoo’s advertising network.
Ms. Smith’s blog
New York Daily News |
Dalai Lama's Chinese website infects visitors with virus: expert
New York Daily News A prominent computer security firm has warned that the Dalai Lama's Chinese-language website has been compromised with malicious software that is infecting computers of visitors with software that could be used for spying on its visitors. Kaspersky Lab … Dalai Lama's China site hacked, infects others: expert Tibetan Government-in-Exile Website Hacked Dalai Lama's Chinese website hacked |
A Web developer has demonstrated a simple-to-execute exploit that allows websites to surreptitiously bombard visitors’ storage devices with gigabytes of junk data.
As its name suggests, FillDisk.com loads an almost unlimited amount of data onto hard drives of people who access the site. It requires no user interaction and works with the Google Chrome, Microsoft Internet Explorer, and Apple Safari browsers. It adds 1GB of data every 16 seconds on a MacBook Pro Retina equipped with a solid state drive, according to Feross Aboukhadijeh, the Web developer and computer science grad student who created the proof-of-concept site.
FillDisk.com manipulates the Web Storage standard included in the HTML5 specification. This standard is designed to make websites easier to use by allowing them to store data on visitors’ hard drives. The functionality can be useful when end users are filling out long forms. If the browser crashes before the form has been completed, the data that’s already been entered will be available when the person visits the site later. The creators of the standard specifically warn that browser developers should take steps to ensure websites can’t abuse the feature by writing unlimited amounts of data.
Read 3 remaining paragraphs | Comments