A phishing attack has been discovered on the UK Government’s Home Office website, The Register reports. The attack, which targets poste.it, the website of Italian bank Poste Italiane, can be found here. The attack was detected by security researchers PrevX and used an RFI exploit via an SQL injection to serve the fraudulent content.
Netcraft have released a Firefox 3 compatible version of their widely used anti-phishing toolbar. The new 1.2 version can be downloaded from addons.mozilla.org.
We named the Netcraft Toolbar as one of our Top Web Browsing Extensions and are delighted to be able to continue using it with the lastest version of our favourite web browser.
Thank you Netcraft 
A cross-site scripting vulnerability (XSS) has been found in online payment processing firm PayPal’s website. The vulnerability allows arbitrary code execution and could be used in a Phishing attack to gather data from unsuspecting users.
A common technique employed by spammers to send large quantities of email is through the use of unsecured web forms like contact forms. The vulnerability they exploit is a form of Header Injection. There are several basic steps you can take to secure your web forms and prevent spam from originating from your website.
I’ve just got off of the phone with the lovely people at …. I have no idea what company, they certainly weren’t Orange that’s for sure! Its a scam, pure and simple.
Storm Twitter
2 Comments
