Spoofing SSL in Firefox 3

Thursday, 22 May 2008, 12:33 AM EST

As with Firefox 3 release candidate 1 the yellow address bar is gone - the address bar remains white as with regular pages, there is no padlock to see nor any other visual indicator. The only difference between plain text and secured mode is a blueish background around the Favicon icon at the left side of the address bar.

Not only does it look rather unfavorable and somehow unclean, it’s hardly visible (certainly not for about 10% of the color-blind male population… true, the yellow address bar wasn’t better in that respect). But there is no padlock and no other visual indicator that this page is over SSL secured mode. The plain non-secured page looks even better:

At blog.startcom.org

[ Read more ]




Spotlight

Compromised cPanel "Account Suspended" pages redirect to exploit kit

The code redirects visitors to another URL where the Fiesta exploit kit is hosted, which then tries to detect and exploit several vulnerabilities in various software. If it succeeds, the visitors are saddled with a banking Trojan.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Fri, Feb 27th
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //