New Phishing Attacks Combine Wildcard DNS and XSS
A new wave of phishing attacks against eBay is exploiting a clever combination of wildcard DNS records and cross-site scripting (XSS) vulnerabilities to use other people's websites to help steal credentials from victims.

Related Netcraft Service: Web Application Security Testing
Read more at: http://news.netcraft.com/archives/2009/02/17/new_phishing_attacks_combine_wildcard_dns_and_xss.html.
 
[ Back ]