😲 "No!?", you say.
Seriously though, two Swedish students have shown how they they can
hack into one of Sweden's biggest banks and transfer money from your
account to theirs in a matter of minutes. They rely on your lack of
knowledge and awareness, but still it's bad. Here's how it works:
They put a simple javascript on a website that is sure to get lots of
visitors (like porn websites offering free services, but really any kind of
website will do) and when you pay a visit the javascript activates in the
background changing your proxy server settings to go passed their own
server. Now, when later you decide to visit your bank you will be routed
through their machines where they can make you retype your password
(saying something like your session has ended and must be renewed for
security reasons). You'll think that you are in fact visiting your bank, so
you trust the message, retype the password and our hackers are in.
This was the best link in English I could find. It's not about them Swedish
hackers described here, but the exploit is the same:
http://news.com.com/2100-7349_3-6159938.html?part=rss&tag=2547-1_3-0-20&subj=news
Originally posted by stockenWait, you mean if I'm using a router with the default password (admin or password or some ridiculous crap) then I might not be secure?!
😲 "No!?", you say.
Seriously though, two Swedish students have shown how they they can
hack into one of Sweden's biggest banks and transfer money from your
account to theirs in a matter of minutes. They rely on your lack of
knowledge and awareness, but still it's bad. Here's how it works:
They put a simple javascript on a website that is sure to ...[text shortened]... ame:
http://news.com.com/2100-7349_3-6159938.html?part=rss&tag=2547-1_3-0-20&subj=news
That's outrageous.
Originally posted by XanthosNZSarcasm aside, a lot of people don't have the time or knowledge to properly
Wait, you mean if I'm using a router with the default password (admin or password or some ridiculous crap) then I might not be secure?!
That's outrageous.
secure their systems (not just this exploit but thinking about possible
security risks in general, such as failing to update your OS and the like).
Don't you think it's important to inform about breaches such as this one
because you understand the problem fully and knows how to counteract
it? That's pretty selfish, if you ask me.
Originally posted by stockenSometimes new hacks come out that really blow my mind with a new way of attacking previously secure systems (through .mwf files for example). This is not such an occasion, I hate to say it but if you can't even work out that you should probably change your router password from the default then you probably shouldn't be online.
Sarcasm aside, a lot of people don't have the time or knowledge to properly
secure their systems (not just this exploit but thinking about possible
security risks in general, such as failing to update your OS and the like).
Don't you think it's important to inform about breaches such as this one
because you understand the problem fully and knows how to counteract
it? That's pretty selfish, if you ask me.
Originally posted by XanthosNZCan't argue with you there. Still, if I want to use the Internet and I haven't
I hate to say it but if you can't even work out that you should probably change your router password from the default then you probably shouldn't be online.
figured this out, I'd be thankful if someone pointed it out (stupid as it may
be).
Originally posted by stockenI think it was WC Fields that said something along the lines of it being the moral duty of every able bodied American everywhere, to help part a sucker from his money.
Can't argue with you there. Still, if I want to use the Internet and I haven't
figured this out, I'd be thankful if someone pointed it out (stupid as it may
be).