World Russia Society Opinion Science Sport Incidents Business
News All >

Malicious Javascript toolkit rages in Internet

Science

A common JavaScript-related security problem reminded of itself.

Malicious Javascript toolkit rages in Internet
Photo: Malicious Javascript toolkit rages in Internet

It’s cross-site scripting, or XSS, a violation of the same origin policy. XSS vulnerabilities occur when an attacker is able to cause a trusted Web site, such as an online banking website, to include a malicious script in the webpage presented to a victim. In that example, the script can then access the banking application with the privileges of the victim, potentially disclosing secret information or transferring money without the victim's authorization.

The vivid example is about 10,000 trusted websites infected last month by javascript toolkit, aimed at sending victims' personal information to attackers via the web.

Finjan, a privately owned web security company, reported that the new toolkit is a very smart program and can easily avoid detection, adapt to new conditions and make an adjustment when patch released.

The user embeds malicious script into the websites himself. The script does not appear on the site after end-user’s first appearance. That’s why it’s almost impossible to track it down.

Though discovered the script is still active and harmful.

Photo: www.microsoft.com

Subscribe to Pravda.Ru Telegram channel, Facebook, RSS!

Author`s name Editorial Team
Popular
Serbian volunteer who fought for Russia in Ukraine asks Putin for help

In Serbia, the man will be tried for mercenarism. He may face a prison term of up to 25 years. The volunteer asked Putin to help him obtain Russian citizenship and corresponding payments

Serbian volunteer who fought in DPR against Ukraine asks Putin to help him
Deputy Defence Minister Timur Ivanon arrested on charges of large bribery
'Shoigu's man' Timur Ivanov arrested for what is believed to be large bribery case
50 years after Portuguese Revolution: Did it produce all the goods?
Former Indian Ambassador to Russia Pankaj Saran: Russia is at par with NATO
50 Years after the Portuguese Revolution Timothy Bancroft-Hinchey Former Indian Ambassador to Russia: India needs to build its own defence industry Daria Aslamova Deputy Defence Minister Timur Ivanon arrested on charges of large bribery Andrey Mihayloff
Last materials
Serbian volunteer who fought in DPR against Ukraine asks Putin to help him
50 Years after the Portuguese Revolution
Former Indian Ambassador to Russia: India needs to build its own defence industry
Deputy Defence Minister Timur Ivanon arrested on charges of large bribery
No one wants to transfer Patriot air defence systems to Ukraine
Turkish Airlines discriminates against Russian passengers, ruins their trips
Russia registers first analogue of Spinraza
Military helicopters collide midair and crash during rehearsal flight in Malaysia
German Chancellor Scholz forbids Putin from quoting Immanuel Kant
Africa undergoes continental shift
РусскийDeutschFrançaisPortuguese
Advertising Sitemap Archive About Authors
Select spelling error with mouse and press Ctrl+Enter

Copyright © 1999-2024, «PRAVDA.Ru».

When reproducing our materials in whole or in part, hyperlink to PRAVDA.Ru should be made. The opinions and views of the authors do not always coincide with the point of view of PRAVDA.Ru's editors.

Privacy Policy Cookie Policy Ethics Policy Corrections Policy Verification/Fact-checking Standards Unnamed Sources Policy
X