Godlike Productions - Conspiracy Forum
Users Online Now: 677 (Who's On?)Visitors Today: 192,799
Pageviews Today: 281,943Threads Today: 93Posts Today: 1,797
05:14 AM


Rate this Thread

Absolute BS Crap Reasonable Nice Amazing
 

Pakistan govt passport website infected with javscript nasty spy code

 
Anonymous Coward
User ID: 77390702
Australia
03/14/2019 09:43 PM
Report Abusive Post
Report Copyright Violation
Pakistan govt passport website infected with javscript nasty spy code
Looks like the world wide web is simply not secure enough to be doing all this stuff people use it for!!


A Pakistani government website was compromised with a keylogger and other malware that hoovered up a whole host of information about people checking on their passport application status.

Researchers from Trustwave discovered that the Scanbox JavaScript framework was running on the site.

The keylogger scooped up users' login details for the compromised site, while Scanbox fingerprinted the user's browser and collected details of programs installed on the machine used to sign in. It also hunted for 77 common anti-malware packages, beaming back details of its findings to the attackers' command-and-control servers.

The user's IP address, the referring site, operating system, user-agent string and installed browser plugins were all collected.

[link to www.theregister.co.uk (secure)]
Anonymous Coward
User ID: 76717171
United States
03/14/2019 09:46 PM
Report Abusive Post
Report Copyright Violation
Re: Pakistan govt passport website infected with javscript nasty spy code
you have nothing to fear if you have nothing to hide!
Anonymous Coward
User ID: 41916887
Canada
03/14/2019 09:49 PM
Report Abusive Post
Report Copyright Violation
Re: Pakistan govt passport website infected with javscript nasty spy code
Looks like the world wide web is simply not secure enough to be doing all this stuff people use it for!!


A Pakistani government website was compromised with a keylogger and other malware that hoovered up a whole host of information about people checking on their passport application status.

Researchers from Trustwave discovered that the Scanbox JavaScript framework was running on the site.

The keylogger scooped up users' login details for the compromised site, while Scanbox fingerprinted the user's browser and collected details of programs installed on the machine used to sign in. It also hunted for 77 common anti-malware packages, beaming back details of its findings to the attackers' command-and-control servers.

The user's IP address, the referring site, operating system, user-agent string and installed browser plugins were all collected.

[link to www.theregister.co.uk (secure)]
 Quoting: Anonymous Coward 77390702


Don't most people run an antivirus these days?
Anonymous Coward
User ID: 41916887
Canada
03/14/2019 09:50 PM
Report Abusive Post
Report Copyright Violation
Re: Pakistan govt passport website infected with javscript nasty spy code
you have nothing to fear if you have nothing to hide!
 Quoting: Anonymous Coward 76717171


OK Mr anonymous coward!
Anonymous Coward (OP)
User ID: 77390702
Australia
03/14/2019 09:51 PM
Report Abusive Post
Report Copyright Violation
Re: Pakistan govt passport website infected with javscript nasty spy code
Don't most people run an antivirus these days?
 Quoting: Anonymous Coward 41916887


do they report on nasty javascript running in the web browser? pretty sure they don't!
Anonymous Coward (OP)
User ID: 77390702
Australia
03/14/2019 09:51 PM
Report Abusive Post
Report Copyright Violation
Re: Pakistan govt passport website infected with javscript nasty spy code
you have nothing to fear if you have nothing to hide!
 Quoting: Anonymous Coward 76717171


you have to hide your bank account user name and password. so everybody has something to hide!!
Anonymous Coward (OP)
User ID: 77390702
Australia
03/14/2019 09:58 PM
Report Abusive Post
Report Copyright Violation
Re: Pakistan govt passport website infected with javscript nasty spy code
Here is another one, Javascript stealing credit card details. It is appalling that web browser makers let their software run javascript from any server. Obviously it is a giant security hole.

Shirley it wouldn't be hard for the default browser settings to be that it only runs javascript from the server you actually visited. Then if the webmasters can't figger out how to write a web page and host all the scripts on their own server, they can put a notice liek "please allow scripts from all these servers: myscript.example.com, malware.example.com, spycode.example.com, ect ect ect".



"Sportswear brand FILA is the latest outfit to fall victim to card-stealing JavaScript of the kind that menaced British Airways and Ticketmaster last year.

Russian security house Group-IB said it discovered and reported to FILA UK malware known as GMO that was active on the fashion brand's website for the past four months – and may have sniffed the payment card information of thousands of customers placing online orders through the tainted pages.

What's worse, the researchers reported that, despite multiple attempts to reach FILA, they have been unable to get the card-data-stealing code removed.

FILA did not respond to our request for comment on the allegation.

According to Group-IB's threat hunters, the GMO infection is very similar to the card-harvesting JavaScript nasty MageCart, in that an attacker covertly slips onto the server of the targeted company and installs code onto the business's website to covertly collect card numbers as they are entered by customers. These details are later uploaded to a collection server at a set time. Such attacks can be particularly difficult to detect as they do not produce a steady stream of traffic out of the infected machine.

[link to www.theregister.co.uk (secure)]
Anonymous Coward
User ID: 76717171
United States
03/14/2019 10:03 PM
Report Abusive Post
Report Copyright Violation
Re: Pakistan govt passport website infected with javscript nasty spy code
its a reference to harry potter and the corrupt court.pink lady said it.

we all have something to hide and its our wealth.antiprivacy strips us of wealth.

to balance the unequal stage,we shall strip tptbs privacy.

pull out its heart and show it to the world.
the very center of its deeds!
the thread that bound shall be pulled.
freedom of speech and privacy shall be the rebuilt cloth.
a living historical artifact!