by Dave Michmerhuizen & Luis Chapetti – Security Researchers Spammers and Phishers are constantly looking for ways to convince people to type in their passwords and press “Log In”. One of the newest strategies we’ve seen them use are specially crafted login pages that appear similar to those of websites that use the increasingly popular OpenID standard. An alarming number of spammers are tailoring their phishing messages to use this new template. OpenID is way for websites to avoid having to create their own user accounts. Instead, they use authentication services offered by better known OpenID ‘providers’. You’ve very likely seen websites offering to allow you to log in using your Facebook or Google or Yahoo accountRead More...
- ISC StormCast for Thursday, July 24th 2014 http://isc.sans.edu/podcastdetail.html?id=4075, (Thu, Jul 24th) July 24, 2014
- VU#162308: Resin Pro improperly performs Unicode transformations July 23, 2014
- Italy gives Google 18-month privacy compliance deadline July 23, 2014
- As Apple rescinds Bitcoin 'app ban' is Gliph the private, secure messaging app you've been looking for? July 23, 2014
- Security Vulnerability in the Tails OS July 23, 2014
Tagsapi apple archives article browser bruce schneier business china copyright development director downloads education enterprise events facebook feeds gfi government hackers hacking industry internet linkedin linux management mcafee microsoft network networks news opinion phishing podcasts science security social-media symantec team cyrmu technology united-kingdom united-states videos vulnerability windows