1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.
  2. Welcome to the new DBSTalk community platform. We have recently migrated to a community platform called Xenfono and hope you will find this change to your liking. There are some differences, but for the most part, if you just post and read, that will all be the same. If you have questions, please post them in the Forum Support area. Thanks!

Mousing over a link to verify destination no longer safe

Discussion in 'Tech Talk - Gadgets, Gizmos and Technology' started by dpeters11, Mar 17, 2013.

  1. dpeters11

    dpeters11 Hall Of Fame

    16,184
    483
    May 30, 2007
    Cincinnati
    I saw this retweeted by a well known security researcher, this page and the demo are safe.

    It uses Javascript, it will show that it will take you to Paypal UK when you mouse over it, but in reality, you'll go somewhere else, in this case a different page on the original site.

    This works in current versions of IE, Chrome and Firefox.

    http://bilaw.al/2013/03/17/hacking-the-a-tag-in-100-characters.html
     
  2. P Smith

    P Smith Mr. FixAnything

    21,341
    127
    Jul 25, 2002
    W.Mdtrn Sea
    oh man! it's never ending hunt for fool users ...
     
  3. dpeters11

    dpeters11 Hall Of Fame

    16,184
    483
    May 30, 2007
    Cincinnati
    Nope. Only safe thing to do really is to manually log into your account and check for anything there, or call a known number for them. These phishing emails are getting more and more sophisticated. They even use two factor authentication you've set up with the real site.
     
  4. P Smith

    P Smith Mr. FixAnything

    21,341
    127
    Jul 25, 2002
    W.Mdtrn Sea
    up to the post, I was think I'm safe by hovering a mouse ...
     
  5. James Long

    James Long Ready for Uplink! Staff Member Super Moderator DBSTalk Club

    44,942
    871
    Apr 17, 2003
    Michiana
    Right click - open in new tab - takes me to the right site in Firefox. That is the way I normally open links anyways.

    The second half of the problem, PayPal redirecting to unusual URLs, makes this exploit possible. Otherwise looking at the URL after clicking will show that you're not in the right place.

    The initial scam page needs to be good as well. To be scammed I would need a good reason to click on that link in the first place.
     
  6. P Smith

    P Smith Mr. FixAnything

    21,341
    127
    Jul 25, 2002
    W.Mdtrn Sea
    That's simplest way to install malicious SW in a split of a second ...
     
  7. The Merg

    The Merg 1*

    10,289
    35
    Jun 24, 2007
    Northern VA
    Good info. Thanks.

    - Merg
     
  8. dpeters11

    dpeters11 Hall Of Fame

    16,184
    483
    May 30, 2007
    Cincinnati
    Thinking about it, I think it would be more of an issue with webmail. Email clients shouldn't do Javascript, especially by default.
     
  9. wilbur_the_goose

    wilbur_the_goose Hall Of Fame

    4,476
    49
    Aug 16, 2006
    Yep - safest way to go is to type the desired URL yourself.
     
  10. Dude111

    Dude111 An Awesome Dude

    737
    20
    Aug 6, 2010
    Im on IE6 and that doesnt work... TOOK ME TO PAYPAL!!!! (Like the demo link said it should)

    EDIT:

    I enabled scripts and it works (So i figured)


    EDIT2:

    If i put the domain into my restricted zone IT DOES NOT WORK! (scripts enabled)
     
  11. dpeters11

    dpeters11 Hall Of Fame

    16,184
    483
    May 30, 2007
    Cincinnati
    I'm assuming its pointless to try to convince you not to use ie6, right? Or at least by summer 2014...

    It certainly makes sense for it to not work in the restricted zone. But in my opinion, there are worse dangers using 6 than that script working or not.
     
  12. Dude111

    Dude111 An Awesome Dude

    737
    20
    Aug 6, 2010
    Your listening to all the Mainstream BS my friend.....

    IE6 is just as good as any newer OVER-BLOATED browser! (As long as you have your security zone set right)

    IE6 is not spying on the end user... YOU CANT SAY THAT FOR SURE ABOUT THESE NEWER BROWSERS!
     
  13. wilbur_the_goose

    wilbur_the_goose Hall Of Fame

    4,476
    49
    Aug 16, 2006
    Dude - IE6 is a swiss cheese browser, and you're putting yourself at risk. Unfortunately, you could be putting the rest of us at risk too by allowing your PC to become part of a botnet that could be used to commit a DDoS attack.
     
  14. dpeters11

    dpeters11 Hall Of Fame

    16,184
    483
    May 30, 2007
    Cincinnati
    Plus, IE 6 means XP. It will become more dangerous to be on XP after it no longer receives any updates. It's not BS. Unfortunately, though I'm not nearly at Wilbur_The_Goose's level, I really do know how these things actually work. Not liking Windows 8 is one thing, but Windows 7 is a very fine OS, until around February 11, 2020.

    But, not everyone can be convinced of the truth :)
     
  15. carlsbad_bolt_fan

    carlsbad_bolt_fan Icon

    798
    16
    May 18, 2004
    Carlsbad, CA
    The goose is golden with this advice. :)
     
  16. SayWhat?

    SayWhat? Know Nothing

    6,255
    133
    Jun 6, 2009
    Hovering is also why I won't use URL shorteners or click on links through them I want to see the underlying URL, not a Libyan domain name (.ly) followed by random characters.

    Nor will I click on links from this board due to the Vigilink scrambling of the URLs.
     
  17. dpeters11

    dpeters11 Hall Of Fame

    16,184
    483
    May 30, 2007
    Cincinnati
    Just for an FYI, add a + at he end of a bitly link, it will tell you where it goes, along with the statistics, like this.

    Http://Bit.ly/dsxpcred+
     
  18. James Long

    James Long Ready for Uplink! Staff Member Super Moderator DBSTalk Club

    44,942
    871
    Apr 17, 2003
    Michiana
    Which, of course, shows up as something like this in the mouseover:
    http://apicdn.viglink.com/api/click?format=go&key=e652088f26975de9b83439c1dd935df0&loc=http%3A%2F%2Fwww.dbstalk.com%2Fshowthread.php%3Fp%3D3199001&out=Http%3A%2F%2FBit.ly%2Fdsxpcred%2B&ref=http%3A%2F%2Fwww.dbstalk.com%2Fusercp.php
     
  19. Mark Holtz

    Mark Holtz Day Sleeper DBSTalk Club

    10,369
    74
    Mar 23, 2002
    Sacramento, CA
    Internet Explorer 6 was released in August, 2001. FWIW: Firefox (then known as Phoenix) was released as 0.1 on September, 2002, with the 1.0 release on November, 2004. It's predecessor, Netscape, was around version 6. Chrome wasn't a twinkle in Google's eye, and Safari was still being worked on.

    Anyone who has done anything beyond "bare bones" HTML code, and actually use features such as Javascript and CSS will quickly find out how well IE doesn't follow established standards to the point where web programmers had to put in kludges in to make the web page work with Internet Explorer 6. Personally, when I was doing web development, I found it much easier to do it in Firefox (because of the robust tools at the time), then adapt the code for other browsers (including the adaptions for IE) rather than develop on IE.

    The biggest reason why IE6 still is around is that some companies have developed internal applications many years ago that are still being used, probably with the aid of Frontpage. These pages break even with Internet Explorer 7 (released in October, 2006 -- FIVE YEARS after IE6), and the developers have long moved on, yet the company doesn't want to spend the money on the replacement and the required training.

    Thank goodness that IE6 will End-Of-Life next year.
     
  20. SayWhat?

    SayWhat? Know Nothing

    6,255
    133
    Jun 6, 2009
    Netscape and FF are distant cousins. Both were developed by the Mozilla Foundation, but were separate projects along with Thunderbird and several others. For some reason, they sold the Netscape name and package to AOL. From that point they continued to develop the full browser suite under the Mozilla name while developing Firefox as a stripped down, standalone project. That continues to this day with the full suite now renamed to SeaMonkey.

    I thought IE6 was abandoned by MS years ago? There has been a big campaign on to kill it off once and for all.
     

Share This Page